Exploit-DB.com RSS Feed

Exploit-DB.com RSS Feed https://www.exploit-db.com en-us The Exploit Database - Exploits, Shellcode, 0days, Remote Exploits, Local Exploits, Web Apps, Vulnerability Reports, Security Articles, Tutorials and more. Sun, 22 Mar 2026 08:20:02 +0000 Sun, 22 Mar 2026 08:20:02 +0000 [webapps] WordPress Backup Migration 1.3.7 - Remote Command Execution https://www.exploit-db.com/exploits/52486 WordPress Backup Migration 1.3.7 - Remote Command Execution Tue, 03 Mar 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52486 [webapps] mailcow 2025-01a - Host Header Password Reset Poisoning https://www.exploit-db.com/exploits/52485 mailcow 2025-01a - Host Header Password Reset Poisoning Tue, 03 Mar 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52485 [webapps] Easy File Sharing Web Server v7.2 - Buffer Overflow https://www.exploit-db.com/exploits/52484 Easy File Sharing Web Server v7.2 - Buffer Overflow Tue, 03 Mar 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52484 [webapps] WeGIA 3.5.0 - SQL Injection https://www.exploit-db.com/exploits/52483 WeGIA 3.5.0 - SQL Injection Tue, 03 Mar 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52483 [webapps] Boss Mini v1.4.0 - Local File Inclusion (LFI) https://www.exploit-db.com/exploits/52482 Boss Mini v1.4.0 - Local File Inclusion (LFI) Tue, 03 Mar 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52482 [webapps] motionEye 0.43.1b4 - RCE https://www.exploit-db.com/exploits/52481 motionEye 0.43.1b4 - RCE Wed, 11 Feb 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52481 [remote] Windows 10.0.17763.7009 - spoofing vulnerability https://www.exploit-db.com/exploits/52480 Windows 10.0.17763.7009 - spoofing vulnerability Wed, 11 Feb 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52480 [local] glibc 2.38 - Buffer Overflow https://www.exploit-db.com/exploits/52479 glibc 2.38 - Buffer Overflow Wed, 11 Feb 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52479 [remote] windows 10/11 - NTLM Hash Disclosure Spoofing https://www.exploit-db.com/exploits/52478 windows 10/11 - NTLM Hash Disclosure Spoofing Wed, 04 Feb 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52478 [remote] Redis 8.0.2 - RCE https://www.exploit-db.com/exploits/52477 Redis 8.0.2 - RCE Wed, 04 Feb 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52477 [webapps] OctoPrint 1.11.2 - File Upload https://www.exploit-db.com/exploits/52476 OctoPrint 1.11.2 - File Upload Wed, 04 Feb 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52476 [remote] Ingress-NGINX Admission Controller v1.11.1 - FD Injection to RCE https://www.exploit-db.com/exploits/52475 Ingress-NGINX Admission Controller v1.11.1 - FD Injection to RCE Wed, 04 Feb 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52475 [webapps] aiohttp 3.9.1 - directory traversal PoC https://www.exploit-db.com/exploits/52474 aiohttp 3.9.1 - directory traversal PoC Wed, 04 Feb 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52474 [webapps] FortiWeb Fabric Connector 7.6.x - SQL Injection to Remote Code Execution https://www.exploit-db.com/exploits/52473 FortiWeb Fabric Connector 7.6.x - SQL Injection to Remote Code Execution Wed, 04 Feb 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52473 [local] Docker Desktop 4.44.3 - Unauthenticated API Exposure https://www.exploit-db.com/exploits/52472 Docker Desktop 4.44.3 - Unauthenticated API Exposure Wed, 04 Feb 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52472 [webapps] Piranha CMS 12.0 - Stored XSS in Text Block https://www.exploit-db.com/exploits/52471 Piranha CMS 12.0 - Stored XSS in Text Block Mon, 02 Feb 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52471 [webapps] RPi-Jukebox-RFID 2.8.0 - Stored Cross-Site Scripting (XSS) https://www.exploit-db.com/exploits/52470 RPi-Jukebox-RFID 2.8.0 - Stored Cross-Site Scripting (XSS) Mon, 02 Feb 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52470 [hardware] D-Link DIR-825 Rev.B 2.10 - Stack Buffer Overflow (DoS) https://www.exploit-db.com/exploits/52469 D-Link DIR-825 Rev.B 2.10 - Stack Buffer Overflow (DoS) Mon, 02 Feb 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52469 [webapps] RPi-Jukebox-RFID 2.8.0 - Remote Command Execution https://www.exploit-db.com/exploits/52468 RPi-Jukebox-RFID 2.8.0 - Remote Command Execution Sat, 17 Jan 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52468 [webapps] Siklu EtherHaul Series EH-8010 - Arbitrary File Upload https://www.exploit-db.com/exploits/52467 Siklu EtherHaul Series EH-8010 - Arbitrary File Upload Sat, 17 Jan 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52467 [webapps] Siklu EtherHaul Series EH-8010 - Remote Command Execution https://www.exploit-db.com/exploits/52466 Siklu EtherHaul Series EH-8010 - Remote Command Execution Sat, 17 Jan 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52466 [webapps] WordPress Quiz Maker 6.7.0.56 - SQL Injection https://www.exploit-db.com/exploits/52465 WordPress Quiz Maker 6.7.0.56 - SQL Injection Thu, 25 Dec 2025 00:00:00 +0000 https://www.exploit-db.com/exploits/52465 [webapps] Chained Quiz 1.3.5 - Unauthenticated Insecure Direct Object Reference via Cookie https://www.exploit-db.com/exploits/52464 Chained Quiz 1.3.5 - Unauthenticated Insecure Direct Object Reference via Cookie Thu, 25 Dec 2025 00:00:00 +0000 https://www.exploit-db.com/exploits/52464 [webapps] FreeBSD rtsold 15.x - Remote Code Execution via DNSSL https://www.exploit-db.com/exploits/52463 FreeBSD rtsold 15.x - Remote Code Execution via DNSSL Thu, 25 Dec 2025 00:00:00 +0000 https://www.exploit-db.com/exploits/52463 [webapps] Summar Employee Portal 3.98.0 - Authenticated SQL Injection https://www.exploit-db.com/exploits/52462 Summar Employee Portal 3.98.0 - Authenticated SQL Injection Tue, 16 Dec 2025 00:00:00 +0000 https://www.exploit-db.com/exploits/52462 [webapps] esm-dev 136 - Path Traversal https://www.exploit-db.com/exploits/52461 esm-dev 136 - Path Traversal Tue, 16 Dec 2025 00:00:00 +0000 https://www.exploit-db.com/exploits/52461 [webapps] Pluck 4.7.7-dev2 - PHP Code Execution https://www.exploit-db.com/exploits/52460 Pluck 4.7.7-dev2 - PHP Code Execution Mon, 08 Dec 2025 00:00:00 +0000 https://www.exploit-db.com/exploits/52460 [webapps] phpMyFAQ 2.9.8 - Cross-Site Request Forgery(CSRF) https://www.exploit-db.com/exploits/52459 phpMyFAQ 2.9.8 - Cross-Site Request Forgery(CSRF) Wed, 03 Dec 2025 00:00:00 +0000 https://www.exploit-db.com/exploits/52459 [webapps] phpMyFAQ 2.9.8 - Cross-Site Request Forgery (CSRF) https://www.exploit-db.com/exploits/52458 phpMyFAQ 2.9.8 - Cross-Site Request Forgery (CSRF) Wed, 03 Dec 2025 00:00:00 +0000 https://www.exploit-db.com/exploits/52458 [webapps] MaNGOSWebV4 4.0.6 - Reflected XSS https://www.exploit-db.com/exploits/52457 MaNGOSWebV4 4.0.6 - Reflected XSS Wed, 03 Dec 2025 00:00:00 +0000 https://www.exploit-db.com/exploits/52457 [webapps] Django 5.1.13 - SQL Injection https://www.exploit-db.com/exploits/52456 Django 5.1.13 - SQL Injection Wed, 03 Dec 2025 00:00:00 +0000 https://www.exploit-db.com/exploits/52456 [webapps] phpMyFaq 2.9.8 - Cross Site Request Forgery (CSRF) https://www.exploit-db.com/exploits/52455 phpMyFaq 2.9.8 - Cross Site Request Forgery (CSRF) Wed, 03 Dec 2025 00:00:00 +0000 https://www.exploit-db.com/exploits/52455 [webapps] MobileDetect 2.8.31 - Cross-Site Scripting (XSS) https://www.exploit-db.com/exploits/52454 MobileDetect 2.8.31 - Cross-Site Scripting (XSS) Wed, 03 Dec 2025 00:00:00 +0000 https://www.exploit-db.com/exploits/52454 [webapps] phpIPAM 1.4 - SQL-Injection https://www.exploit-db.com/exploits/52453 phpIPAM 1.4 - SQL-Injection Wed, 03 Dec 2025 00:00:00 +0000 https://www.exploit-db.com/exploits/52453 [webapps] OpenRepeater 2.1 - OS Command Injection https://www.exploit-db.com/exploits/52452 OpenRepeater 2.1 - OS Command Injection Wed, 03 Dec 2025 00:00:00 +0000 https://www.exploit-db.com/exploits/52452 [webapps] phpMyAdmin 5.0.0 - SQL Injection https://www.exploit-db.com/exploits/52451 phpMyAdmin 5.0.0 - SQL Injection Wed, 03 Dec 2025 00:00:00 +0000 https://www.exploit-db.com/exploits/52451 [webapps] RosarioSIS 6.7.2 - Cross Site Scripting (XSS) https://www.exploit-db.com/exploits/52450 RosarioSIS 6.7.2 - Cross Site Scripting (XSS) Wed, 03 Dec 2025 00:00:00 +0000 https://www.exploit-db.com/exploits/52450 [webapps] RosarioSIS 6.7.2 - Cross-Site Scripting (XSS) https://www.exploit-db.com/exploits/52449 RosarioSIS 6.7.2 - Cross-Site Scripting (XSS) Wed, 03 Dec 2025 00:00:00 +0000 https://www.exploit-db.com/exploits/52449 [webapps] PluckCMS 4.7.10 - Unrestricted File Upload https://www.exploit-db.com/exploits/52448 PluckCMS 4.7.10 - Unrestricted File Upload Wed, 03 Dec 2025 00:00:00 +0000 https://www.exploit-db.com/exploits/52448 [webapps] openSIS Community Edition 8.0 - SQL Injection https://www.exploit-db.com/exploits/52447 openSIS Community Edition 8.0 - SQL Injection Wed, 03 Dec 2025 00:00:00 +0000 https://www.exploit-db.com/exploits/52447 [webapps] YOURLS 1.8.2 - Cross-Site Request Forgery (CSRF) https://www.exploit-db.com/exploits/52446 YOURLS 1.8.2 - Cross-Site Request Forgery (CSRF) Tue, 02 Dec 2025 00:00:00 +0000 https://www.exploit-db.com/exploits/52446 [webapps] phpMyFAQ 3.1.7 - Reflected Cross-Site Scripting (XSS) https://www.exploit-db.com/exploits/52445 phpMyFAQ 3.1.7 - Reflected Cross-Site Scripting (XSS) Tue, 02 Dec 2025 00:00:00 +0000 https://www.exploit-db.com/exploits/52445 [webapps] phpIPAM 1.5.1 - SQL Injection https://www.exploit-db.com/exploits/52444 phpIPAM 1.5.1 - SQL Injection Tue, 02 Dec 2025 00:00:00 +0000 https://www.exploit-db.com/exploits/52444 [webapps] Piwigo 13.6.0 - SQL Injection https://www.exploit-db.com/exploits/52443 Piwigo 13.6.0 - SQL Injection Tue, 02 Dec 2025 00:00:00 +0000 https://www.exploit-db.com/exploits/52443 [webapps] phpIPAM 1.6 - Reflected-Cross-Site Scripting (XSS) https://www.exploit-db.com/exploits/52442 phpIPAM 1.6 - Reflected-Cross-Site Scripting (XSS) Tue, 02 Dec 2025 00:00:00 +0000 https://www.exploit-db.com/exploits/52442 [webapps] phpIPAM 1.6 - Reflected Cross-Site Scripting (XSS) https://www.exploit-db.com/exploits/52441 phpIPAM 1.6 - Reflected Cross-Site Scripting (XSS) Tue, 02 Dec 2025 00:00:00 +0000 https://www.exploit-db.com/exploits/52441 [webapps] Flowise 3.0.4 - Remote Code Execution (RCE) https://www.exploit-db.com/exploits/52440 Flowise 3.0.4 - Remote Code Execution (RCE) Fri, 31 Oct 2025 00:00:00 +0000 https://www.exploit-db.com/exploits/52440 [webapps] Casdoor 2.95.0 - Cross-Site Request Forgery (CSRF) https://www.exploit-db.com/exploits/52439 Casdoor 2.95.0 - Cross-Site Request Forgery (CSRF) Wed, 29 Oct 2025 00:00:00 +0000 https://www.exploit-db.com/exploits/52439 [remote] Ilevia EVE X1/X5 Server 4.7.18.0.eden - Reverse Rootshell https://www.exploit-db.com/exploits/52437 Ilevia EVE X1/X5 Server 4.7.18.0.eden - Reverse Rootshell Tue, 16 Sep 2025 00:00:00 +0000 https://www.exploit-db.com/exploits/52437 [local] Microsoft Windows Server 2025 Hyper-V NT Kernel Integration VSP - Elevation of Privilege https://www.exploit-db.com/exploits/52436 Microsoft Windows Server 2025 Hyper-V NT Kernel Integration VSP - Elevation of Privilege Tue, 16 Sep 2025 00:00:00 +0000 https://www.exploit-db.com/exploits/52436