Blog RSSExploits RSSFacebook
CVE Certified

The Exploit Database

GHDB

 

The Exploit Database (EDB) – an ultimate archive of exploits and vulnerable software. A great resource for penetration testers, vulnerability researchers, and security addicts alike. Our aim is to collect exploits from submittals and mailing lists and concentrate them in one, easy to navigate database.


Remote Exploits

Date D   Description Plat. Author
2016-09-28   FreePBX < 13.0.188 - Remote Command Execution (Metasploit) 6 REMOTE Ahmed Sultan
2016-09-27   Android Stagefright MP4 tx3g Integer Overflow 5 REMOTE jduck
2016-09-26   Metasploit Web UI Static secret_key_base Value 2 REMOTE joernchen
2016-09-23   Metasploit Web UI - Diagnostic Console Command Execution 6 REMOTE Justin Steven
2016-09-22   Kaltura 11.1.0-2 - Remote Code Execution (Metasploit) 11 REMOTE Mehmet Ince
2016-09-18   Cisco ASA 9.2(3) - 'EXTRABACON' Authentication Bypass 12 REMOTE Sean Dillon
2016-09-14   ASUS DSL-X11 ADSL Router - Unauthenticated DNS Change 15 REMOTE Todor Donev
2016-09-13   COMTREND ADSL Router CT-5624 C01_R03 Unauthenticated Remote DNS Changer 3 REMOTE Todor Donev
2016-09-13   COMTREND ADSL Router CT-5367 C01_R12 Unauthenticated Remote DNS Changer 3 REMOTE Todor Donev
2016-09-13   Tenda ADSL2/2+ Modem 963281TAN Unauthenticated Remote DNS Changer 5 REMOTE Todor Donev

Local Exploits

Date D   Description Plat. Author
2016-09-30   KeepNote 0.7.8 - Command Execution 0 LOCAL R-73eN
2016-09-27   Microsoft Windows - RegLoadAppKey Hive Enumeration Privilege Escalation (MS16-11 1 LOCAL Google Security Research
2016-09-27   Microsoft Windows 10 10586 (x32/x64) / 8.1 Update 2 - NtLoadKeyEx User Hive Atta 3 LOCAL Google Security Research
2016-09-27   Linux Kernel 4.6.3 Netfilter Privilege Escalation 3 LOCAL h00die
2016-09-23   Kerberos in Microsoft Windows - Security Feature Bypass (MS16-101) 10 LOCAL Nabeel Ahmed
2016-09-23   Microsoft Internet Explorer 11 CORS Disrespect 2 LOCAL Ricardo Iramar dos Santos
2016-09-22   DllHijackAuditor 3.5 - Stack Overflow Vulnerability 4 LOCAL ZwX
2016-09-20   EKG Gadu 1.9~pre+r2855-3+b1 - Local Buffer Overflow 2 LOCAL Juan Sacco
2016-09-20   PHP 5.0.0 - 'tidy_parse_file()' Buffer Overflow 7 LOCAL Yakir Wizman
2016-09-19   AVS Audio Converter 8.2.1 – Buffer Overflow Vulnérability 9 LOCAL ZwX

Web Applications

Date D   Description Plat. Author
2016-09-27   VenShop System 2010 Database Disclosure 2 WEB indoushka
2016-09-23   Kerio Control Unified Threat Management 9.1.0 build 1087, 9.1.1 build 1324 - Mul 1 WEB SEC Consult
2016-09-21   VegaDNS 0.13.2 - Remote Command Injection 6 WEB Wireghoul
2016-09-20   ZineBasic 1.1 - Arbitrary File Disclosure 2 WEB bd0rk
2016-09-18   AnoBBS 1.0.1 - Remote File Inclusion 5 WEB bd0rk
2016-09-14   wdCalendar 2 - SQL Injection 4 WEB Alfonso Castillo Angel
2016-09-14   Cherry Music 0.35.1 - Arbitrary File Disclosure 5 WEB feedersec
2016-09-12   Vodafone Mobile Wifi - Reset Admin Password 3 WEB Daniele Linguaglossa
2016-09-09   Zabbix 2.0 - 3.0.3 - SQL Injection 14 WEB Zzzians
2016-09-08   Adobe ColdFusion < 11 Update 10 - XML External Entity Injection 7 WEB Dawid Golunski

DoS/PoC

Date D   Description Plat. Author
2016-09-29   VLC Media Player 2.2.1 - Buffer Overflow 4 DOS sultan albalawi
2016-09-26   Linux - SELinux W+X Protection Bypass via AIO 1 DOS Google Security Research
2016-09-14   Microsoft Internet Explorer 11.0.9600.18482 - Use After Free 7 DOS Marcin Ressel
2016-09-01   PHP 7.0 - JsonSerializable::jsonSerialize json_encode Local Denial of Service 7 DOS Yakir Wizman
2016-09-01   PHP 7.0 - AppendIterator::append Local Denial of Service 4 DOS Yakir Wizman
2016-09-01   PHP 5.0.0 - snmpset() Local Denial of Service 3 DOS Yakir Wizman
2016-09-01   PHP 5.0.0 - snmprealwalk() Local Denial of Service 4 DOS Yakir Wizman
2016-09-01   PHP 5.0.0 - snmpwalk() Local Denial of Service 9 DOS Yakir Wizman
2016-09-01   PHP 5.0.0 - fbird_[p]connect() Local Denial of Service 4 DOS Yakir Wizman
2016-09-01   PHP 5.0.0 - snmpwalkoid() Local Denial of Service 3 DOS Yakir Wizman

Shellcode

Date D   Description Plat. Author
2016-09-18   Cisco ASA - Authentication Bypass 'EXTRABACON' (Improved Shellcode) (69 bytes) 12 SHELLCODE Sean Dillon
2016-09-14   Windows x86 - Password Protected TCP Bind Shell (637 bytes) 10 SHELLCODE Roziul Hasan Khan Shifat
2016-09-09   Windows x86 - Bind Shell TCP Shellcode 12 SHELLCODE Roziul Hasan Khan Shifat
2016-09-06   Windows x86 - Persistent Reverse Shell TCP (494 Bytes) 7 SHELLCODE Roziul Hasan Khan Shifat
2016-08-19   Windows x86 - InitiateSystemShutdownA() Shellcode (599 bytes) 6 SHELLCODE Roziul Hasan Khan Shifat
2016-08-17   Windows x86 - CreateProcessA cmd.exe Shellcode (253 bytes) 12 SHELLCODE Roziul Hasan Khan Shifat
2016-08-17   Windows x86 - MessageBoxA Shellcode (242 bytes) 8 SHELLCODE Roziul Hasan Khan Shifat
2016-08-11   Linux/x86 - zsh Reverse TCP Shellcode port 9090 (80 bytes) 13 SHELLCODE thryb
2016-08-11   Linux/x86 - zsh TCP Bind Shell Port 9090 (96 bytes) 4 SHELLCODE thryb
2016-08-09   Linux/x86 - NetCat Bind Shell with Port (44 / 52 bytes) 5 SHELLCODE CripSlick

Papers

Date D   Description Plat. Author
2014-08-27   SSDP Amplification Scanner 97 PAPERS SaMaN
2014-06-26   [Hacking-Contest] SSH Server wrapper 74 PAPERS Jakob Lell
2012-03-20   Full MSSQL Injection PWNage 205 PAPERS CWH Underground
2011-10-12   Reverse Shell Cheat Sheet 112 PAPERS pentestmonkey
2011-10-09   Beyond SQLi: Obfuscate and Bypass 99 PAPERS ZeQ3uL
2011-06-02   Local File Inclusion to Remote Command Execution using SSH 132 PAPERS LaNMaSteR53
2011-04-27   offsec官方渗透测试报告 319 PAPERS admin