Exploit-DB.com RSS Feed

Exploit-DB.com RSS Feed https://www.exploit-db.com en-us The Exploit Database - Exploits, Shellcode, 0days, Remote Exploits, Local Exploits, Web Apps, Vulnerability Reports, Security Articles, Tutorials and more. Wed, 17 Jun 2026 21:00:03 +0000 Wed, 17 Jun 2026 21:00:03 +0000 [webapps] OpenEMR 7.0.2 - Arbitrary File Read https://www.exploit-db.com/exploits/52610 OpenEMR 7.0.2 - Arbitrary File Read Mon, 08 Jun 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52610 [webapps] WordPress Contest Gallery 28.1.4 - Unauthenticated Blind SQL Injection https://www.exploit-db.com/exploits/52609 WordPress Contest Gallery 28.1.4 - Unauthenticated Blind SQL Injection Fri, 05 Jun 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52609 [webapps] Drupal Core 10.5.5 - Error-Based SQL Injection https://www.exploit-db.com/exploits/52608 Drupal Core 10.5.5 - Error-Based SQL Injection Mon, 01 Jun 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52608 [webapps] WordPress OrderConvo 14 - Path Traversal https://www.exploit-db.com/exploits/52607 WordPress OrderConvo 14 - Path Traversal Mon, 01 Jun 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52607 [remote] Notepad++ 8.9.6 - Arbitrary Code Execution https://www.exploit-db.com/exploits/52606 Notepad++ 8.9.6 - Arbitrary Code Execution Sat, 30 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52606 [webapps] YAMCS yamcs-core 5.12.7 - No Rate Limiting https://www.exploit-db.com/exploits/52605 YAMCS yamcs-core 5.12.7 - No Rate Limiting Sat, 30 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52605 [webapps] YAMCS yamcs-core 5.12.7 - User Enumeration https://www.exploit-db.com/exploits/52604 YAMCS yamcs-core 5.12.7 - User Enumeration Sat, 30 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52604 [webapps] YAMCS yamcs-core 5.12.7 - LDAP Injection https://www.exploit-db.com/exploits/52603 YAMCS yamcs-core 5.12.7 - LDAP Injection Sat, 30 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52603 [remote] Microsoft - NTLMv2 Hash Capture https://www.exploit-db.com/exploits/52601 Microsoft - NTLMv2 Hash Capture Fri, 29 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52601 [webapps] MikroORM 7.0.13 - SQL Injection https://www.exploit-db.com/exploits/52600 MikroORM 7.0.13 - SQL Injection Fri, 29 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52600 [webapps] Prodigy Commerce 3.3.0 - Local File Inclusion https://www.exploit-db.com/exploits/52598 Prodigy Commerce 3.3.0 - Local File Inclusion Fri, 29 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52598 [webapps] Langflow 1.3.0 - Remote Code Execution https://www.exploit-db.com/exploits/52597 Langflow 1.3.0 - Remote Code Execution Fri, 29 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52597 [webapps] Quick Playground for WordPress 1.3.1 - Unauthenticated Remote Code Execution https://www.exploit-db.com/exploits/52596 Quick Playground for WordPress 1.3.1 - Unauthenticated Remote Code Execution Fri, 29 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52596 [local] ImageMagick - Infinite Loop in the MIFF decoder can lead to CPU exhaustion https://www.exploit-db.com/exploits/52595 ImageMagick - Infinite Loop in the MIFF decoder can lead to CPU exhaustion Fri, 29 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52595 [local] ZTE Routers - Unauthenticated Denial of Service https://www.exploit-db.com/exploits/52594 ZTE Routers - Unauthenticated Denial of Service Fri, 29 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52594 [local] ZTE ZXHN H188A V6 - Authentication Bypass https://www.exploit-db.com/exploits/52593 ZTE ZXHN H188A V6 - Authentication Bypass Fri, 29 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52593 [local] ZTE H298A / H108N - Unauthenticated Credential Exposure https://www.exploit-db.com/exploits/52592 ZTE H298A / H108N - Unauthenticated Credential Exposure Fri, 29 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52592 [local] Linux Kernel - Local Privilege Escalation https://www.exploit-db.com/exploits/52591 Linux Kernel - Local Privilege Escalation Fri, 29 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52591 [webapps] MixPHP Framework 2.2.17 - Unsafe Deserialization Remote Code Execution https://www.exploit-db.com/exploits/52590 MixPHP Framework 2.2.17 - Unsafe Deserialization Remote Code Execution Fri, 29 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52590 [remote] Wing FTP Server 8.1.3 - Authenticated Remote Code Execution https://www.exploit-db.com/exploits/52589 Wing FTP Server 8.1.3 - Authenticated Remote Code Execution Fri, 29 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52589 [webapps] CubeCart < 6.7.0 - Reflected Cross-Site Scripting (XSS) (Unauthenticated) https://www.exploit-db.com/exploits/52588 CubeCart < 6.7.0 - Reflected Cross-Site Scripting (XSS) (Unauthenticated) Fri, 29 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52588 [remote] strongSwan 5.9.13 - libsimaka EAP-SIM/AKA heap buffer overflow https://www.exploit-db.com/exploits/52587 strongSwan 5.9.13 - libsimaka EAP-SIM/AKA heap buffer overflow Fri, 29 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52587 [dos] strongSwan 5.9.13 - DoS https://www.exploit-db.com/exploits/52586 strongSwan 5.9.13 - DoS Fri, 29 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52586 [local] Linux Kernel - Local Privilege Escalation https://www.exploit-db.com/exploits/52585 Linux Kernel - Local Privilege Escalation Wed, 27 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52585 [webapps] Casdoor 3.54.1 - Arbitrary File Write via Path Traversal https://www.exploit-db.com/exploits/52584 Casdoor 3.54.1 - Arbitrary File Write via Path Traversal Wed, 27 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52584 [webapps] EspoCRM 9.3.3 - SSRF https://www.exploit-db.com/exploits/52583 EspoCRM 9.3.3 - SSRF Wed, 27 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52583 [webapps] scramble - Remote Code Execution https://www.exploit-db.com/exploits/52582 scramble - Remote Code Execution Wed, 27 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52582 [hardware] MeiG Smart FORGE_SLT711 - OS Command Injection https://www.exploit-db.com/exploits/52581 MeiG Smart FORGE_SLT711 - OS Command Injection Wed, 27 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52581 [local] Realtek rtl819x - Local Privilege https://www.exploit-db.com/exploits/52580 Realtek rtl819x - Local Privilege Wed, 27 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52580 [webapps] OpenCATS 0.9.7.4 - SQL Injection https://www.exploit-db.com/exploits/52579 OpenCATS 0.9.7.4 - SQL Injection Wed, 27 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52579 [webapps] Grav CMS 2.0.0-beta.2 - Remote Code Execution https://www.exploit-db.com/exploits/52578 Grav CMS 2.0.0-beta.2 - Remote Code Execution Tue, 26 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52578 [webapps] Apache HTTP Server 2.4.66 - 'mod_http2' Double-Free Denial of Service https://www.exploit-db.com/exploits/52577 Apache HTTP Server 2.4.66 - 'mod_http2' Double-Free Denial of Service Tue, 26 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52577 [hardware] D-Link DSL2600U - 'rom-0' Admin Password Disclosure https://www.exploit-db.com/exploits/52576 D-Link DSL2600U - 'rom-0' Admin Password Disclosure Tue, 26 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52576 [webapps] Wordpress Temporary Login Plugin 1.0.0 - 'temp-login-token' Authentication Bypass to Account Takeover https://www.exploit-db.com/exploits/52575 Wordpress Temporary Login Plugin 1.0.0 - 'temp-login-token' Authentication Bypass to Account Takeover Tue, 26 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52575 [webapps] cPanel - CRLF Injection https://www.exploit-db.com/exploits/52574 cPanel - CRLF Injection Tue, 26 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52574 [local] Linux Kernel 6.8 - Local Privilege Escalation https://www.exploit-db.com/exploits/52573 Linux Kernel 6.8 - Local Privilege Escalation Tue, 26 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52573 [webapps] Cockpit 359 - RCE https://www.exploit-db.com/exploits/52572 Cockpit 359 - RCE Thu, 21 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52572 [webapps] BookStack 25.12.1 - Denial of Service https://www.exploit-db.com/exploits/52571 BookStack 25.12.1 - Denial of Service Thu, 21 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52571 [local] Lenovo LegionSpace 1.7.11.2 - 'DAService' Unquoted Service Path https://www.exploit-db.com/exploits/52570 Lenovo LegionSpace 1.7.11.2 - 'DAService' Unquoted Service Path Thu, 21 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52570 [webapps] solaredge - (CSRF-OOB-Injection) https://www.exploit-db.com/exploits/52569 solaredge - (CSRF-OOB-Injection) Thu, 21 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52569 [webapps] FUXA 1.2.9 - RCE https://www.exploit-db.com/exploits/52568 FUXA 1.2.9 - RCE Thu, 21 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52568 [local] Windows Snipping Tool - NTLMv2 Hash Hijack https://www.exploit-db.com/exploits/52567 Windows Snipping Tool - NTLMv2 Hash Hijack Fri, 15 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52567 [local] Remote Sunrise Helper for Windows 2026.14 - Unauthenticated File/Directory Listing https://www.exploit-db.com/exploits/52566 Remote Sunrise Helper for Windows 2026.14 - Unauthenticated File/Directory Listing Fri, 15 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52566 [local] Remote Sunrise Helper for Windows 2026.14 - Remote Code Execution https://www.exploit-db.com/exploits/52565 Remote Sunrise Helper for Windows 2026.14 - Remote Code Execution Fri, 15 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52565 [webapps] WordPress Plugin Supsystic Contact Form 1.7.36 - SSTI https://www.exploit-db.com/exploits/52564 WordPress Plugin Supsystic Contact Form 1.7.36 - SSTI Thu, 14 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52564 [webapps] Apache HertzBeat 1.8.0 - Remote Code Execution https://www.exploit-db.com/exploits/52563 Apache HertzBeat 1.8.0 - Remote Code Execution Thu, 14 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52563 [webapps] ePati Antikor NGFW 2.0.1301 - Authentication Bypass https://www.exploit-db.com/exploits/52562 ePati Antikor NGFW 2.0.1301 - Authentication Bypass Thu, 14 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52562 [webapps] PJPROJECT 2.16 - Heap Bufferoverflow https://www.exploit-db.com/exploits/52561 PJPROJECT 2.16 - Heap Bufferoverflow Thu, 14 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52561 [webapps] Ninja Forms Uploads - Unauthenticated PHP File Upload https://www.exploit-db.com/exploits/52560 Ninja Forms Uploads - Unauthenticated PHP File Upload Wed, 13 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52560 [webapps] glances 4.5.2 - command injection https://www.exploit-db.com/exploits/52559 glances 4.5.2 - command injection Wed, 13 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52559