Blog RSSExploits RSSFacebook
CVE Certified

The Exploit Database

GHDB

 

The Exploit Database (EDB) – an ultimate archive of exploits and vulnerable software. A great resource for penetration testers, vulnerability researchers, and security addicts alike. Our aim is to collect exploits from submittals and mailing lists and concentrate them in one, easy to navigate database.


Remote Exploits

Date D   Description Plat. Author
2018-11-14   Atlassian Jira Authenticated Upload Code Execution 0 REMOTE Alexander Gonzalez
2018-11-07   Dell OpenManage Network Manager 6.2.0.51 SP3 Privilege Escalation 31 REMOTE Matthew Bergin
2018-11-06   Morris Worm sendmail Debug Mode Shell Escape 9 REMOTE wvu
2018-11-06   Morris Worm fingerd Stack Buffer Overflow 3 REMOTE wvu
2018-11-06   PCManFTPD 2.0.7 Server APPE Command Buffer Overflow 3 REMOTE Dino Covotsos
2018-11-01   Nutanix AOS & Prism < 5.5.5 (LTS) / < 5.8.1 (STS) - SFTP Authentication Bypass 16 REMOTE Adam Brown
2018-10-30   Paramiko 2.4.1 - Authentication Bypass 25 REMOTE Adam Brown
2018-10-25   WebExec Authenticated User Code Execution 40 REMOTE Ron
2018-10-25   exim 4.90 - Remote Code Execution 19 REMOTE hackk.gr
2018-10-22   libSSH - Authentication Bypass 50 REMOTE Dayanç Soyadlı

Local Exploits

Date D   Description Plat. Author
2018-11-14   ntpd 4.2.8p10 - Out-of-Bounds Read (PoC) 0 LOCAL Magnus Klaaborg Stubman
2018-11-14   xorg-x11-server < 1.20.1 - Local Privilege Escalation 0 LOCAL bolonobolo
2018-11-14   XAMPP Control Panel 3.2.2 - Buffer Overflow (SEH) (Unicode) 0 LOCAL Semen Alexandrovich Lyhin
2018-11-14   Microsoft Windows 10 (Build 17134) - Local Privilege Escalation (UAC Bypass) 0 LOCAL Tenable NS
2018-11-07   libiec61850 1.3 - Stack Based Buffer Overflow 7 LOCAL Dhiraj Mishra
2018-11-07   Arm Whois 3.11 - Buffer Overflow (SEH) 4 LOCAL Semen Alexandrovich Lyhin
2018-11-06   LiquidVPN 1.36 / 1.37 - Privilege Escalation 6 LOCAL Bernd Leitner
2018-11-06   Microsoft Internet Explorer 11 - Null Pointer Dereference 5 LOCAL LiquidWorm
2018-11-01   Any Sound Recorder 2.93 - Buffer Overflow Local (SEH) (Metasploit) 6 LOCAL d3ckx1
2018-11-01   xorg-x11-server 1.20.3 - Privilege Escalation 10 LOCAL Marco Ivaldi

Web Applications

Date D   Description Plat. Author
2018-11-14   TP-Link Archer C50 Wireless Router 171227 - Cross-Site Request Forgery (Configur 0 WEB Wadeek
2018-11-07   CMS Made Simple 2.2.7 - Remote Code Execution 15 WEB Lucian Ioan Nitescu
2018-11-06   blueimp jQuery Arbitrary File Upload 11 WEB wvu
2018-11-06   PHP Proxy 3.0.3 - Local File Inclusion 6 WEB AkkuS
2018-11-06   Virgin Media Hub 3.0 Router - Denial of Service (PoC) 6 WEB Ross Inman
2018-11-06   Advantech WebAccess SCADA 8.3.2 - Remote Code Execution 6 WEB Chris Lyne
2018-11-01   Loadbalancer.org Enterprise VA MAX 8.3.2 - Remote Code Execution 9 WEB Jakub Palaczynski
2018-10-29   WordPress Arforms 3.5.1 Arbitrary File Delete 35 WEB Amir Hossein Mahboubi
2018-10-25   Apache OFBiz 16.11.04 - XML External Entity Injection 33 WEB Jamie Parfet
2018-10-17   Heatmiser Wifi Thermostat 1.7 - Credential Disclosure 18 WEB d0wnp0ur

DoS/PoC

Date D   Description Plat. Author
2018-11-14   AMPPS 2.7 - Denial of Service (PoC) 0 DOS Ihsan Sencan
2018-11-14   Cisco Immunet < 6.2.0 / Cisco AMP For Endpoints 6.2.0 - Denial of Service 0 DOS hyp3rlinx
2018-11-14   Evince 3.24.0 - Command Injection 0 DOS Matlink
2018-11-14   CuteFTP Mac 3.1 - Denial of Service (PoC) 0 DOS Yair Rodríguez Aparicio
2018-11-14   Mongoose Web Server 6.9 - Denial of Service (PoC) 0 DOS Ihsan Sencan
2018-11-14   CuteFTP 9.3.0.3 - Denial of Service (PoC) 0 DOS Ismael Nava
2018-11-14   HeidiSQL 9.5.0.5196 - Denial of Service (PoC) 0 DOS Victor Mondragón
2018-11-07   VSAXESS V2.6.2.70 build20171226_053 - 'organization' Denial of Service (PoC) 5 DOS Diego Santamaria
2018-11-07   eToolz 3.4.8.0 - Denial of Service (PoC) 4 DOS Ihsan Sencan
2018-11-07   Blue Server 1.1 Denial Of Service 5 DOS Ihsan Sencan

Shellcode

Date D   Description Plat. Author
2018-11-14   Linux/x86 - Bind (99999/TCP) NetCat Traditional (/bin/nc) Shell (/bin/bash) Shel 1 SHELLCODE Javier Tello
2018-11-01   Windows/x64 - Remote (Bind TCP) Keylogger Shellcode (864 bytes) (Generator) 13 SHELLCODE Roziul Hasan Khan Shifat
2018-10-25   Linux/x86 - execve(/bin/cat /etc/ssh/sshd_config) Shellcode 44 Bytes 11 SHELLCODE Goutham Madhwaraj
2018-10-09   Linux/MIPS (Big Endian) - execve(/bin/sh) + Reverse TCP 192.168.2.157/31337 Shel 14 SHELLCODE cq674350529
2018-10-09   Linux/x86 - execve(/bin/sh) + MMX/ROT13/XOR Shellcode (Encoder/Decoder) (104 byt 9 SHELLCODE Kartik Durg
2018-10-08   Linux/x86 - execve(/bin/sh) + NOT/SHIFT-N/XOR-N Encoded Shellcode (50 byes) 5 SHELLCODE Pedro Cabral
2018-09-27   Linux/ARM - Bind (0.0.0.0:4444/TCP) Shell (/bin/sh) + Null-Free Shellcode (92 By 15 SHELLCODE Ken Kitahara
2018-09-25   Linux/ARM - sigaction() Based Egghunter (PWN!) + execve("/bin/sh", NULL, NULL) S 6 SHELLCODE Ken Kitahara
2018-09-25   Linux/ARM - Egghunter (PWN!) + execve("/bin/sh", NULL, NULL) Shellcode (28 Bytes 9 SHELLCODE Ken Kitahara
2018-09-21   Linux/x86 - Egghunter (0x50905090) + sigaction() Shellcode (27 bytes) 5 SHELLCODE Valerio Brussani

Papers

Date D   Description Plat. Author
2018-11-01   Phrack: Viewer Discretion Advised: (De)coding an iOS Kernel Vulnerability (Adam 7 PAPERS phrack
2018-10-09   A Red Teamer’s guide to pivoting 16 PAPERS Artem Kondratenko
2018-10-08   Phrack: Twenty years of Escaping the Java Sandbox (Ieu Eauvidoum & disk noise) 6 PAPERS phrack
2018-01-15   Phrack: .NET Instrumentation via MSIL bytecode injection (Antonio "s4tan" Parata 216 PAPERS phrack
2017-08-28   Abusing Token Privileges For LPE 294 PAPERS drone and breenmachine
2017-01-12   OpenSSL - Weak KDF 255 PAPERS anonymous
2014-08-27   SSDP Amplification Scanner 300 PAPERS SaMaN
2014-06-26   [Hacking-Contest] SSH Server wrapper 277 PAPERS Jakob Lell
2012-03-20   Full MSSQL Injection PWNage 431 PAPERS CWH Underground
2011-10-12   Reverse Shell Cheat Sheet 297 PAPERS pentestmonkey