Blog RSSExploits RSSFacebook
CVE Certified

The Exploit Database

GHDB

 

The Exploit Database (EDB) – an ultimate archive of exploits and vulnerable software. A great resource for penetration testers, vulnerability researchers, and security addicts alike. Our aim is to collect exploits from submittals and mailing lists and concentrate them in one, easy to navigate database.


Remote Exploits

Date D   Description Plat. Author
2017-03-28   Github Enterprise - Default Session Secret And Deserialization (Metasploit) 1 REMOTE sinn3r
2017-03-28   Samba 4.5.2 - Symlink Race Permits Opening Files Outside Share Directory 1 REMOTE Google Security Research
2017-03-28   Internet Information Services (IIS) 6.0 WebDAV - 'ScStoragePathFromUrl' Buffer O 5 REMOTE Zhiniang Peng and Chen Wu
2017-03-27   Nuxeo Platform 6.x / 7.x Shell Upload 4 REMOTE Ronan Kervella
2017-03-24   NETGEAR WNR2000v5 (Un)authenticated hidden_lang_avi Stack Overflow 2 REMOTE Pedro Ribeiro
2017-03-24   Logsign Remote Command Injection 10 REMOTE Mehmet Ince
2017-03-24   D-Link DSL-2640B Remote DNS Changer 2 REMOTE cryptolulz666
2017-03-23   OpenSSH On Cygwin SFTP Client Directory Traversal 12 REMOTE jannh
2017-03-23   SysGauge 1.5.18 - SMTP Validation Buffer Overflow (Metasploit) 6 REMOTE Chris Higgins
2017-03-23   Disk Sorter Enterprise 9.5.12 - 'GET' Buffer Overflow (SEH) 7 REMOTE Daniel Teixeira

Local Exploits

Date D   Description Plat. Author
2017-03-28   QNAP QTS < 4.2.4 - Domain Privilege Escalation 1 LOCAL Pasquale Fiorillo
2017-03-27   Forticlient 5.2.3 Windows 10 x64 (Post Anniversary) - Privilege Escalation 5 LOCAL sickness
2017-03-27   Forticlient 5.2.3 Windows 10 x64 (Pre Anniversary) - Privilege Escalation 1 LOCAL sickness
2017-03-27   VMware Host Guest Client Redirector - DLL Side Loading Exploit 3 LOCAL Yorick Koster
2017-03-20   Windows DVD Maker 6.1.7 - XML External Entity Injection 7 LOCAL hyp3rlinx
2017-03-16   Microsoft Windows - COM Session Moniker Privilege Escalation (MS17-012) 29 LOCAL Google Security Research
2017-03-09   USBPcap - Privilege Escalation 16 LOCAL Parvez Anwar
2017-03-07   CyberGhost 6.0.4.2205 - Privilege Escalation 8 LOCAL Kacper Szurek
2017-03-01   Cisco AnyConnect Secure Mobility Client 4.3.04027 - Privilege Escalation 14 LOCAL Pcchillin
2017-02-15   ShadeYouVPN Client 2.0.1.11 - Privilege Escalation 9 LOCAL Kacper Szurek

Web Applications

Date D   Description Plat. Author
2017-03-21   D-Link DGS-1510 - Multiple Vulnerabilities 10 WEB Varang Amin
2017-03-20   Wordpress Plugin Membership Simplified 1.58 - Arbitrary File Download 12 WEB The Martian
2017-03-20   Microsoft Internet Information Services Cross Site Scripting 8 WEB David Fernandez
2017-03-16   GitHub Enterprise 2.8.0 < 2.8.6 - Remote Code Execution 12 WEB iblue
2017-03-15   Microsoft Edge Fetch API Arbitrary Header Setting 4 WEB Securify B.V.
2017-03-13   e107 <= 2.1.4 - 'keyword' Blind SQL Injection 10 WEB StAkeR
2017-03-13   WatchGuard XTMv 11.12 Build 516911 - User Management Cross-Site Request Forgery 6 WEB KoreLogic
2017-03-10   FTP Voyager Scheduler 16.2.0 - Cross-Site Request Forgery 11 WEB hyp3rlinx
2017-03-10   ASUSWRT RT-AC53 (3.0.0.4.380.6038) - Remote Code Execution 5 WEB Bruno Bierbaumer
2017-03-10   Drupal 7.x Module Services - Remote Code Execution 5 WEB Charles Fol

DoS/PoC

Date D   Description Plat. Author
2017-03-28   Apple Safari - Out-of-Bounds Read when Calling Bound Function 1 DOS Google Security Research
2017-03-28   Apple Safari - Builtin JavaScript Allows Function.caller to be Used in Strict Mo 1 DOS Google
2017-03-28   Apple Safari - 'DateTimeFormat.format' Type Confusion 2 DOS Google Security Research
2017-03-28   Microsoft Visual Studio 2015 update 3 - Denial of Service 1 DOS Peter Baris
2017-03-28   FTPShell Server 6.56 Import CSV Buffer Overflow 1 DOS Nassim Asrir
2017-03-27   wifirxpower - Local Buffer Overflow 4 DOS Nassim Asrir
2017-03-23   SpyCamLizard 1.230 - Denial of Service 5 DOS ScrR1pTK1dd13
2017-03-21   Microsoft Internet Explorer - 'textarea.defaultValue' Memory Disclosure (MS17-00 7 DOS Google Security Research
2017-03-21   Mozilla Firefox - 'table' Use-After-Free 3 DOS Google Security Research
2017-03-21   ExtraPuTTY 0.29-RC2 - Denial of Service 2 DOS hyp3rlinx

Shellcode

Date D   Description Plat. Author
2017-03-27   Linux/x86 - Reverse /bin/bash Shellcode (110 bytes) 5 SHELLCODE JR0ch17
2017-03-20   Linux/x86 - File Reader Shellcode (54 Bytes) 7 SHELLCODE WangYihang
2017-03-20   Linux/x86 - Bind Shell Shellcode (42 bytes) 8 SHELLCODE Oleg Boytsev
2017-03-20   Linux/x86 - Encoded exceve("/bin/sh") Shellcode (44 Bytes) 5 SHELLCODE WangYihang
2017-03-13   Windows x86 - Hide Console Window Shellcode (182 bytes) 8 SHELLCODE Ege Balci
2017-03-06   Linux/x86-64 - Polymorphic NetCat Reverse Shell Shellcode (106 bytes) 6 SHELLCODE Robert L. Taylor
2017-03-06   Linux/x86-64 - NetCat Reverse Shell Shellcode (72 bytes) 10 SHELLCODE Robert L. Taylor
2017-03-06   Linux/x86-64 - Polymorphic Flush IPTables Shellcode (47 bytes) 6 SHELLCODE Robert L. Taylor
2017-03-06   Linux/x86-64 - Polymorphic Setuid(0) & Execve(/bin/sh) Shellcode (31 bytes) 4 SHELLCODE Robert L. Taylor
2017-03-02   Windows x86 - Reverse TCP Staged Alphanumeric Shellcode (332 Bytes) 12 SHELLCODE Snir Levi

Papers

Date D   Description Plat. Author
2017-01-12   OpenSSL - Weak KDF 25 PAPERS anonymous
2014-08-27   SSDP Amplification Scanner 123 PAPERS SaMaN
2014-06-26   [Hacking-Contest] SSH Server wrapper 97 PAPERS Jakob Lell
2012-03-20   Full MSSQL Injection PWNage 227 PAPERS CWH Underground
2011-10-12   Reverse Shell Cheat Sheet 132 PAPERS pentestmonkey
2011-10-09   Beyond SQLi: Obfuscate and Bypass 119 PAPERS ZeQ3uL
2011-06-02   Local File Inclusion to Remote Command Execution using SSH 151 PAPERS LaNMaSteR53
2011-04-27   offsec官方渗透测试报告 399 PAPERS admin