Blog RSSExploits RSSFacebook
CVE Certified

The Exploit Database

GHDB

 

The Exploit Database (EDB) – an ultimate archive of exploits and vulnerable software. A great resource for penetration testers, vulnerability researchers, and security addicts alike. Our aim is to collect exploits from submittals and mailing lists and concentrate them in one, easy to navigate database.


Remote Exploits

Date D   Description Plat. Author
2018-07-18   HomeMatic Zentrale CCU2 Unauthenticated Remote Code Execution 3 REMOTE Kacper Szurek
2018-07-17   Microsoft Windows Enterprise Mode Site List 1/2 XML Injection 9 REMOTE hyp3rlinx
2018-07-17   Microsoft Windows .library-ms Information Disclosure 9 REMOTE hyp3rlinx
2018-07-17   Nanopool Claymore Dual Miner APIs Remote Code Execution 3 REMOTE phra@snado
2018-07-16   Hadoop YARN ResourceManager Unauthenticated Command Execution 12 REMOTE Green-m
2018-07-13   Manage Engine Exchange Reporter Plus Unauthenticated Remote Code Execution 4 REMOTE Kacper Szurek
2018-07-11   IBM QRadar SIEM Unauthenticated Remote Code Execution 9 REMOTE Pedro Ribeiro
2018-07-11   OpenSSH < 6.6 SFTP - Command Execution 16 REMOTE SECFORCE
2018-07-09   HP VAN SDN Controller Root Command Injection 9 REMOTE wvu
2018-07-09   HID discoveryd command_blink_on Unauthenticated Remote Command Execution 6 REMOTE Brendan Coles

Local Exploits

Date D   Description Plat. Author
2018-07-16   Linux/Ubuntu Coredump Reading Access Bypass 6 LOCAL jannh
2018-07-16   Microsoft Windows POP/MOV SS Local Privilege Elevation 8 LOCAL watters-r7
2018-07-13   Linux Kernel < 4.13.9 (Ubuntu 16.04/Fedora 27) - Local Privilege Escalation 1 LOCAL Rick Larabee
2018-07-10   Boxoft WAV to WMA Converter 1.0 - Local Buffer Overflow (SEH) 9 LOCAL Achilles
2018-07-03   Enhanced Mitigation Experience Toolkit (EMET) - XML External Entity Injection 10 LOCAL hyp3rlinx
2018-06-28   Dell EMC RecoverPoint < 5.1.2 - Remote Root Command Execution 11 LOCAL Paul Taylor
2018-06-28   Dell EMC RecoverPoint < 5.1.2 - Local Root Command Execution 7 LOCAL Paul Taylor
2018-06-28   Audiograbber 1.83 - Local Buffer Overflow (SEH) 3 LOCAL Dennis 'dhn' Herrmann
2018-06-28   Pale Moon Browser < 27.9.3 - Use After Free (PoC) 6 LOCAL Berk Cem Göksel
2018-06-28   Nikto 2.1.6 - CSV Injection 8 LOCAL Adam Greenhill

Web Applications

Date D   Description Plat. Author
2018-07-17   QNAP Q'Center change_passwd Command Execution 1 WEB Brendan Coles
2018-07-13   Apache CouchDB Arbitrary Command Execution 14 WEB Green-m
2018-07-13   phpMyAdmin Authenticated Remote Code Execution 16 WEB Jacob Robles
2018-07-12   Instagram Clone Script 2.0 Cross Site Scripting 5 WEB Borna Nematzadeh
2018-07-11   Monstra CMS Authenticated Arbitrary File Upload 19 WEB Touhid M.Shaikh
2018-07-11   D-Link DIR601 2.02 - Credential Disclosure 6 WEB Richard Rogerson
2018-07-11   Oracle WebLogic 12.1.2.0 - RMI Registry UnicastRef Object Java Deserialization R 10 WEB bobsecq
2018-07-11   Gitea 1.4.0 - Remote Code Execution 4 WEB Kacper Szurek
2018-07-09   GitList 0.6.0 Argument Injection 8 WEB Shelby Pace
2018-07-05   CMS Made Simple 2.2.5 - Remote Code Execution 13 WEB Mustafa Hasan

DoS/PoC

Date D   Description Plat. Author
2018-07-16   G DATA Total Security 25.4.0.3 - Activex Buffer Overflow 4 DOS Filipe Xavier Oliveira
2018-07-13   Microsoft Edge Chakra JIT SetConcatStrMultiItemBE Type Confusion 6 DOS lokihardt
2018-07-13   Microsoft Edge Chakra JIT BoundFunction::NewInstance Bug 2 DOS lokihardt
2018-07-13   Microsoft Edge Chakra JIT Out-Of-Bounds Reads/Writes 1 DOS lokihardt
2018-07-13   Chrome V8 KeyAccumulator Bug 2 DOS lokihardt
2018-07-11   VLC Media Player 2.2.8 Arbitrary Code Execution 7 DOS Eugene NG
2018-07-10   Tor Browser < 0.3.2.10 - Use After Free (PoC) 5 DOS t4rkd3vilz
2018-07-10   Grundig Smart Inter@ctive 3.0 Insecure Direct Object Reference 5 DOS Ahmethan Gultekin
2018-07-06   Intel Processor Diagnostic Tool (IPDT) Privilege Escalation 6 DOS Stefan Kanthak
2018-07-03   Delta Industrial Automation COMMGR 1.08 Buffer Overflow 8 DOS t4rkd3vilz

Shellcode

Date D   Description Plat. Author
2018-07-17   Linux/x64 - Reverse (::1:1337/TCP) + IPv6 + Password (pwnd) Shellcode (115 bytes 3 SHELLCODE Hashim Jawad
2018-07-17   Linux/ARM - Bind (1234/TCP) Shell (/bin/sh) Shellcode (104 bytes) 2 SHELLCODE odzhancode
2018-07-10   Linux/x86 - Kill Process Shellcode (20 bytes) 10 SHELLCODE Nathu Nandwani
2018-07-03   Linux/x86 - Execve /bin/cat /etc/passwd Shellcode (37 bytes) 13 SHELLCODE Anurag Srivastava
2018-06-11   Linux/ARM - Egghunter (0x50905090) + execve('/bin/sh') Shellcode (60 bytes) 28 SHELLCODE rtmcx
2018-05-31   Linux/ARM - Egghunter + /bin/sh Shellcode (32 bytes) 17 SHELLCODE Ken Kitahara
2018-05-31   Linux/x86 - Bind (4444/TCP) Shell Shellcode (105 bytes) 21 SHELLCODE Paolo Perego
2018-05-31   Linux/x86 - EggHunter + access() Shellcode (38 bytes) 14 SHELLCODE Paolo Perego
2018-05-29   Linux/x86 - Bind (5555/TCP) Shell Shellcode (98 bytes) 16 SHELLCODE Luca
2018-05-28   Linux/x86 - Reverse (10.0.7.17:4444/TCP) Shell (/bin/sh) Shellcode (101 Bytes) 19 SHELLCODE Jonathan Crosby

Papers

Date D   Description Plat. Author
2018-01-15   Phrack: .NET Instrumentation via MSIL bytecode injection (Antonio "s4tan" Parata 177 PAPERS phrack
2017-08-28   Abusing Token Privileges For LPE 221 PAPERS drone and breenmachine
2017-01-12   OpenSSL - Weak KDF 186 PAPERS anonymous
2014-08-27   SSDP Amplification Scanner 260 PAPERS SaMaN
2014-06-26   [Hacking-Contest] SSH Server wrapper 261 PAPERS Jakob Lell
2012-03-20   Full MSSQL Injection PWNage 384 PAPERS CWH Underground
2011-10-12   Reverse Shell Cheat Sheet 265 PAPERS pentestmonkey
2011-10-09   Beyond SQLi: Obfuscate and Bypass 241 PAPERS ZeQ3uL
2011-06-02   Local File Inclusion to Remote Command Execution using SSH 343 PAPERS LaNMaSteR53
2011-04-27   offsec官方渗透测试报告 760 PAPERS admin