Blog RSSExploits RSSFacebook
CVE Certified

The Exploit Database

GHDB

 

The Exploit Database (EDB) – an ultimate archive of exploits and vulnerable software. A great resource for penetration testers, vulnerability researchers, and security addicts alike. Our aim is to collect exploits from submittals and mailing lists and concentrate them in one, easy to navigate database.


Remote Exploits

Date D   Description Plat. Author
2017-12-11   LabF nfsAxe FTP Client 3.7 - Buffer Overflow (DEP Bypass) 0 REMOTE wetw0rk
2017-12-07   Claymore Dual ETH + DCR/SC/LBC/PASC GPU Miner - Stack Buffer Overflow / Path Tra 11 REMOTE tintinweb
2017-12-07   LaCie 5big Network 2.2.8 - Command Injection 2 REMOTE Timo Sablowski
2017-12-06   Polycom Shell HDX Series Traceroute Command Execution 8 REMOTE Mumbai
2017-12-06   Microsoft Office Equation Editor Code Execution 11 REMOTE mumbai
2017-12-06   Claymore's Dual Miner 10.1 Stack Buffer Overflow 6 REMOTE tintinweb
2017-12-06   VX Search 10.2.14 - 'command_name' Buffer Overflow 1 REMOTE W01fier00t
2017-12-04   HP iMC Plat 7.2 - Remote Code Execution 7 REMOTE Chris Lyne
2017-12-04   HP iMC Plat 7.2 - Remote Code Execution 3 REMOTE Chris Lyne
2017-11-30   Asterisk 13.17.2~dfsg-2 Memory Exhaustion 13 REMOTE Juan Sacco

Local Exploits

Date D   Description Plat. Author
2017-12-11   Apple macOS 10.13.1 (High Sierra) - 'Blank Root' Local Privilege Escalation 2 LOCAL Lemiorhan
2017-12-11   Apple macOS 10.13.1 (High Sierra) - Insecure Cron System Local Privilege Escalat 1 LOCAL Mark Wadham
2017-12-06   Proxifier for Mac 2.19 - Local root Privilege Escalation 5 LOCAL Mark Wadham
2017-12-06   Hashicorp vagrant-vmware-fusion 4.0.23 - Local root Privilege Escalation 4 LOCAL Mark Wadham
2017-12-06   Hashicorp vagrant-vmware-fusion 4.0.24 - Local root Privilege Escalation 5 LOCAL Mark Wadham
2017-12-06   Hashicorp vagrant-vmware-fusion 5.0.0 - Local root Privilege Escalation 3 LOCAL Mark Wadham
2017-12-06   Sera 1.2 - Local root Privilege Escalation / Password Disclosure 3 LOCAL Mark Wadham
2017-12-06   Hashicorp vagrant-vmware-fusion 5.0.1 - Local root Privilege Escalation 3 LOCAL Mark Wadham
2017-12-06   Hashicorp vagrant-vmware-fusion 5.0.3 - Local root Privilege Escalation 2 LOCAL Mark Wadham
2017-12-06   Arq 5.9.6 - Local root Privilege Escalation 3 LOCAL Mark Wadham

Web Applications

Date D   Description Plat. Author
2017-12-06   WinduCMS 3.1 - Local File Disclosure 10 WEB Maciek Krupa
2017-12-04   Artica Web Proxy 3.06 - Remote Code Execution 8 WEB hyp3rlinx
2017-12-04   MistServer 2.12 - Cross-Site Scripting 4 WEB hyp3rlinx
2017-12-04   WinduCMS 3.1 Local File Disclosure 3 WEB Maciej Krupa
2017-11-30   osCommerce 2.3.4.1 - Arbitrary File Upload 13 WEB Simon Scannell
2017-11-29   Synology StorageManager 5.2 - Remote Root Command Execution 10 WEB SecuriTeam
2017-11-20   phpMyFAQ 2.9.9 Code Injection 27 WEB tomplixsee
2017-11-15   Allworx Server Manager 6x / 6x12 / 48x Cross Site Scripting 18 WEB LiquidWorm
2017-11-14   Web Viewer 1.0.0.193 (Samsung SRN-1670D) - Unrestricted File Upload 11 WEB Omar Mezrag
2017-11-09   Geutebrueck GCore GCoreServer.exe Buffer Overflow 6 WEB Luca Cappiello

DoS/PoC

Date D   Description Plat. Author
2017-12-12   macOS getrusage Stack Leak 0 DOS jannh
2017-12-12   macOS necp_get_socket_attributes so_pcb Type Confusion 0 DOS jannh
2017-12-12   macOS XNU Kernel - Memory Disclosure due to bug in Kernel API for Detecting Kern 0 DOS Google Security Research
2017-12-12   MikroTik 6.40.5 ICMP - Denial of Service 0 DOS FarazPajohan
2017-12-07   Linux Kernel - DCCP Socket Use-After-Free 6 DOS Mohamed Ghannam
2017-12-07   Microsoft Windows Defender - Controlled Folder Bypass Through UNC Path 6 DOS Google Security Research
2017-12-04   Abyss Web Server < 2.11.6 - Heap Memory Corruption 4 DOS hyp3rlinx
2017-12-04   SocuSoft Co. Photo 2 Video Converter 8.0.0 Code Execution / DoS 5 DOS ret2eax
2017-12-01   Linux Kernel - 'The Huge Dirty Cow' Overwriting The Huge Zero Page 4 DOS Bindecy
2017-11-30   QEMU - NBD Server Long Export Name Stack Buffer Overflow 10 DOS Eric Blake

Shellcode

Date D   Description Plat. Author
2017-10-19   Windows x64 - API Hooking Shellcode (117 bytes) 42 SHELLCODE Roziul Hasan Khan Shifat
2017-10-16   Linux/x86 - execve(/bin/sh) Polymorphic Shellcode (30 bytes) 9 SHELLCODE Manuel Mancera
2017-09-27   Linux/x86_64 - mkdir() 'evil' Shellcode (30 bytes) 22 SHELLCODE Touhid M.Shaikh
2017-09-11   Linux/ARM (Raspberry Pi) - Reverse TCP Shell (192.168.0.12:4444/TCP) Shellcode ( 18 SHELLCODE Andrea Sindoni
2017-09-11   Linux/ARM (Raspberry Pi) - Bind TCP Shell (4444/TCP) Shellcode (192 bytes) 13 SHELLCODE Andrea Sindoni
2017-09-01   Linux/x86 - Fork Bomb Shellcode (9 bytes) 10 SHELLCODE Touhid M.Shaikh
2017-08-22   Linux/x86_64 - Fork Bomb Shellcode (11 bytes) 29 SHELLCODE Touhid M.Shaikh
2017-08-22   Linux/x86_64 - kill All Processes Shellcode (19 bytes) 25 SHELLCODE Touhid M.Shaikh
2017-08-21   Linux/x86-64 - Reverse TCP Shell (192.168.1.2:4444/TCP) Shellcode (153 bytes) 28 SHELLCODE Touhid M.Shaikh
2017-08-07   Linux x86 - /bin/sh Shellcode (24 bytes) 30 SHELLCODE Touhid M.Shaikh

Papers

Date D   Description Plat. Author
2017-08-28   Abusing Token Privileges For LPE 28 PAPERS drone and breenmachine
2017-01-12   OpenSSL - Weak KDF 72 PAPERS anonymous
2014-08-27   SSDP Amplification Scanner 143 PAPERS SaMaN
2014-06-26   [Hacking-Contest] SSH Server wrapper 124 PAPERS Jakob Lell
2012-03-20   Full MSSQL Injection PWNage 258 PAPERS CWH Underground
2011-10-12   Reverse Shell Cheat Sheet 151 PAPERS pentestmonkey
2011-10-09   Beyond SQLi: Obfuscate and Bypass 138 PAPERS ZeQ3uL
2011-06-02   Local File Inclusion to Remote Command Execution using SSH 192 PAPERS LaNMaSteR53
2011-04-27   offsec官方渗透测试报告 558 PAPERS admin