Blog RSSExploits RSSFacebook
CVE Certified

The Exploit Database

GHDB

 

The Exploit Database (EDB) – an ultimate archive of exploits and vulnerable software. A great resource for penetration testers, vulnerability researchers, and security addicts alike. Our aim is to collect exploits from submittals and mailing lists and concentrate them in one, easy to navigate database.


Remote Exploits

Date D   Description Plat. Author
2017-10-23   Unitrends UEB 9 HTTP API/Storage Remote Root 3 REMOTE Cale Smith
2017-10-23   Unitrends UEB bpserverd Authentication Bypass / Remote Command Execution 4 REMOTE Jared Arave
2017-10-23   Polycom Command Shell Authorization Bypass 38 REMOTE Paul Haas
2017-10-16   Sync Breeze Enterprise 10.1.16 - Buffer Overflow (SEH) (Metasploit) 19 REMOTE wetw0rk
2017-10-13   Sync Breeze Enterprise 10.1.16 SEH Overflow 17 REMOTE wetw0rk
2017-10-12   VX Search Enterprise 10.1.12 - Buffer Overflow 10 REMOTE Revnic Vasile
2017-10-11   Trend Micro OfficeScan Remote Code Execution 16 REMOTE Mehmet Ince
2017-10-10   Unitrends UEB 9.1 bpserverd Remote Command Execution 16 REMOTE Jared Arave
2017-10-10   Unitrends UEB 9.1 Authentication Bypass / Remote Command Execution 6 REMOTE Jared Arave
2017-10-10   OrientDB 2.2.2 - 2.2.22 - Remote Code Execution (Metasploit) 8 REMOTE ricardojba1

Local Exploits

Date D   Description Plat. Author
2017-10-23   Hashicorp vagrant-vmware-fusion 4.0.24 Local Root Privilege Escalation 3 LOCAL Mark Wadham
2017-10-20   Microsoft Game Definition File Editor 6.3.9600 - XML External Entity Injection 8 LOCAL hyp3rlinx
2017-10-13   Windows Escalate UAC Protection Bypass (In Memory Injection) Abusing WinSXS 20 LOCAL Ernesto Fernandez
2017-10-12   ASX to MP3 3.1.3.7 - '.m3u' Buffer Overflow 7 LOCAL Parichay Rai
2017-10-11   ASX To MP3 Converter Stack Overflow 7 LOCAL Nitesh Shilpkar
2017-10-10   Unitrends UEB 9.1 Privilege Escalation 6 LOCAL Jared Arave
2017-10-10   DiskBoss Enterprise 8.4.16 - Local Buffer Overflow 4 LOCAL C4t0ps1s
2017-10-10   Microsoft Word 2007 (x86) - Information Disclosure 12 LOCAL Eduardo Braun Prado
2017-10-10   Dup Scout Enterprise 10.0.18 - 'Import Command' Buffer Overflow 4 LOCAL Touhid M.Shaikh
2017-10-10   DiskBoss Enterprise 8.4.16 - 'Import Command' Buffer Overflow 8 LOCAL Touhid M.Shaikh

Web Applications

Date D   Description Plat. Author
2017-10-23   TP-Link WR940N Remote Code Execution 5 WEB Tim Carrington
2017-10-23   Check_MK 1.2.8p25 - Information Disclosure 3 WEB Julien Ahrens
2017-10-17   Webmin 1.850 SSRF / CSRF / Cross Site Scripting 10 WEB hyp3rlinx
2017-10-13   Tomcat JSP Upload Bypass Remote Code Execution 21 WEB peewpw
2017-10-12   Trend Micro InterScan Messaging Security (Virtual Appliance) - Remote Code Execu 7 WEB Mehmet Ince
2017-10-10   ERS Data System 1.8.1 Java Deserialization 10 WEB West Shepherd
2017-10-10   Apache Tomcat < 9.0.1 (Beta) / < 8.5.23 / < 8.0.47 / < 7.0.8 - JSP Upload Bypass 21 WEB intx0x80
2017-10-10   ClipBucket 2.8.3 - Remote Code Execution 5 WEB Meisam Monsef
2017-10-10   FileRun < 2017.09.18 - SQL Injection 10 WEB SPARC
2017-09-28   Fibaro Home Center 2 - Remote Command Execution / Privilege Escalation 9 WEB forsec

DoS/PoC

Date D   Description Plat. Author
2017-10-23   Mozilla Firefox < 55 - Denial of Service 2 DOS Amit Sangra
2017-10-19   Linux Kernel - 'AF_PACKET' Use-After-Free 3 DOS SecuriTeam
2017-10-19   Microsoft Windows - 'nt!NtQueryObject (ObjectNameInformation)' Kernel Pool Memor 4 DOS Google Security Research
2017-10-17   Micro Focus VisiBroker C++ 8.5 SP2 Memory Corruption 5 DOS Wolfgang Ettlinger
2017-10-16   Microsoft Edge Chakra StackScriptFunction::BoxState::Box Uninitialized Pointers 5 DOS lokihardt
2017-10-16   Microsoft Edge Chakra JIT Failed RegexHelper::StringReplace Call 5 DOS lokihardt
2017-10-16   Microsoft Edge Chakra JIT Incorrect GenerateBailOut Calling Patterns 6 DOS lokihardt
2017-10-16   Opentext Documentum Content Server File Hijack / Privilege Escalation 4 DOS Andrey B. Panfilov
2017-10-16   Opentext Documentum Content Server Privilege Escalation 4 DOS Andrey B. Panfilov
2017-10-16   Opentext Documentum Content Server File Download 4 DOS Andrey B. Panfilov

Shellcode

Date D   Description Plat. Author
2017-10-19   Windows x64 - API Hooking Shellcode (117 bytes) 7 SHELLCODE Roziul Hasan Khan Shifat
2017-10-16   Linux/x86 - execve(/bin/sh) Polymorphic Shellcode (30 bytes) 7 SHELLCODE Manuel Mancera
2017-09-27   Linux/x86_64 - mkdir() 'evil' Shellcode (30 bytes) 7 SHELLCODE Touhid M.Shaikh
2017-09-11   Linux/ARM (Raspberry Pi) - Reverse TCP Shell (192.168.0.12:4444/TCP) Shellcode ( 7 SHELLCODE Andrea Sindoni
2017-09-11   Linux/ARM (Raspberry Pi) - Bind TCP Shell (4444/TCP) Shellcode (192 bytes) 1 SHELLCODE Andrea Sindoni
2017-09-01   Linux/x86 - Fork Bomb Shellcode (9 bytes) 9 SHELLCODE Touhid M.Shaikh
2017-08-22   Linux/x86_64 - Fork Bomb Shellcode (11 bytes) 12 SHELLCODE Touhid M.Shaikh
2017-08-22   Linux/x86_64 - kill All Processes Shellcode (19 bytes) 10 SHELLCODE Touhid M.Shaikh
2017-08-21   Linux/x86-64 - Reverse TCP Shell (192.168.1.2:4444/TCP) Shellcode (153 bytes) 11 SHELLCODE Touhid M.Shaikh
2017-08-07   Linux x86 - /bin/sh Shellcode (24 bytes) 17 SHELLCODE Touhid M.Shaikh

Papers

Date D   Description Plat. Author
2017-08-28   Abusing Token Privileges For LPE 21 PAPERS drone and breenmachine
2017-01-12   OpenSSL - Weak KDF 65 PAPERS anonymous
2014-08-27   SSDP Amplification Scanner 141 PAPERS SaMaN
2014-06-26   [Hacking-Contest] SSH Server wrapper 116 PAPERS Jakob Lell
2012-03-20   Full MSSQL Injection PWNage 256 PAPERS CWH Underground
2011-10-12   Reverse Shell Cheat Sheet 149 PAPERS pentestmonkey
2011-10-09   Beyond SQLi: Obfuscate and Bypass 136 PAPERS ZeQ3uL
2011-06-02   Local File Inclusion to Remote Command Execution using SSH 187 PAPERS LaNMaSteR53
2011-04-27   offsec官方渗透测试报告 515 PAPERS admin