Blog RSSExploits RSSFacebook
CVE Certified

The Exploit Database

GHDB

 

The Exploit Database (EDB) – an ultimate archive of exploits and vulnerable software. A great resource for penetration testers, vulnerability researchers, and security addicts alike. Our aim is to collect exploits from submittals and mailing lists and concentrate them in one, easy to navigate database.


Remote Exploits

Date D   Description Plat. Author
2017-01-17   iSelect v1.4 - Local Buffer Overflow 3 REMOTE Juan Sacco
2017-01-17   WinaXe Plus 8.7 - Buffer Overflow 1 REMOTE Peter Baris
2017-01-17   Apple iTunes Notify Script Insertion 1 REMOTE Benjamin Kunz Mejri
2017-01-16   DiskBoss Enterprise GET Buffer Overflow 1 REMOTE Gabor Seljan
2017-01-12   Cisco Firepower Management Console 6.0 Post Authentication UserAdd 5 REMOTE sinn3r
2017-01-11   DiskBoss Enterprise 7.5.12 - 'POST' Buffer Overflow (SEH) 2 REMOTE Wyndell Bibera
2017-01-05   Zyxel/Eir D1000 DSL Modem NewNTPServer Command Injection Over TR-064 10 REMOTE 0x27
2017-01-03   Internet Download Accelerator 6.10.1.1527 - FTP Buffer Overflow (SEH) 8 REMOTE Fady Mohammed Osman
2016-12-26   OpenSSH < 7.4 - agent Protocol Arbitrary Library Loading 20 REMOTE Google Security Research
2016-12-22   NETGEAR WNR2000v5 - Remote Code Execution 6 REMOTE Pedro Ribeiro

Local Exploits

Date D   Description Plat. Author
2017-01-12   Firejail - Privilege Escalation 1 LOCAL Daniel Hodson
2017-01-12   Cemu 1.6.4b - Information Leak + Buffer Overflow (Emulator Breakout) 2 LOCAL Wack0
2017-01-12   Microsoft Windows 8.1 (x64) - RGNOBJ Integer Overflow (MS16-098) 1 LOCAL Saif
2017-01-12   Microsoft Windows Kernel - 'win32k.sys' 'NtSetWindowLongPtr' Privilege Escalatio 7 LOCAL Rick Larabee
2017-01-10   Enigma Fileless UAC Bypass 3 LOCAL r00t-3xp10it
2017-01-05   Kaspersky 17.0.0 - Local CA root is Incorrectly Protected 2 LOCAL Google Security Research
2016-12-28   Android get_user/put_user Exploit 7 LOCAL timwr
2016-12-26   OpenSSH < 7.4 - 'UsePrivilegeSeparation Disabled' Forwarded Unix Domain Sockets 9 LOCAL Google Security Research
2016-12-23   macOS < 10.12.2 / iOS < 10.2 - Broken Kernel Mach Port Name uref Handling Privil 8 LOCAL Google Security Research
2016-12-23   macOS < 10.12.2 / iOS < 10.2 Kernel - _kernelrpc_mach_port_insert_right_trap Ref 5 LOCAL Google Security Research

Web Applications

Date D   Description Plat. Author
2017-01-18   BoZoN 2.4 - Remote Code Execution 0 WEB hyp3rlinx
2017-01-18   dirLIST 0.3.0 - Arbitrary File Upload 0 WEB hyp3rlinx
2017-01-18   WordPress WooCommerce Direct Download Local File Inclusion 3 WEB Diego Celdran Morell
2017-01-17   Tenda ADSL2/2+ Modem D840R - Unauthenticated DNS Change 2 WEB Todor Donev
2017-01-17   Pirelli DRG A115 ADSL Router - Unauthenticated DNS Change 0 WEB Todor Donev
2017-01-13   iTechscripts Freelancer Script 5.11 - 'sk' Parameter SQL Injection 8 WEB v3n0m
2017-01-11   Freepbx < 2.11.1.5 - Remote Code Execution 4 WEB inj3ctor3
2017-01-04   PHPMailer Sendmail Argument Injection 10 WEB Spencer McIntyre
2017-01-03   PHPMailer < 5.2.20 / SwiftMailer < 5.4.5-DEV / Zend Framework / zend-mail < 2.4. 3 WEB Dawid Golunski
2017-01-03   Xfinity Gateway (Technicolor DPC3941T) - Cross-Site Request Forgery 0 WEB Ayushman Dutta

DoS/PoC

Date D   Description Plat. Author
2017-01-17   PHP LibGD Heap Buffer Overflow 2 DOS Hans Jerry Illikainen
2017-01-16   SapLPD 7.4.0 Denial Of Service 0 DOS Peter Baris
2017-01-16   Mozilla Firefox < 50.1.0 - Use After Free 0 DOS Marcin Ressel
2017-01-09   Brave Browser 1.2.16/1.9.56 - Address Bar URL Spoofing 5 DOS Aaditya Purani
2016-12-27   FTPShell Server 6.36 - '.csv' Local Denial of Service 4 DOS sultan albalawi
2016-12-26   XAMPP Control Panel - Denial Of Service 7 DOS hyp3rlinx
2016-12-23   Microsoft Internet Explorer 11 - MSHTML CPaste­Command::ConvertBitmaptoPng H 7 DOS Skylined
2016-12-23   macOS 10.12.1 / iOS < 10.2 - syslogd Arbitrary Port Replacement 5 DOS Google Security Research
2016-12-23   macOS 10.12.1 / iOS < 10.2 - powerd Arbitrary Port Replacement 7 DOS Google Security Research
2016-12-23   macOS 10.12 - Double vm_deallocate in Userspace MIG Code Use-After-Free 4 DOS Google Security Research

Shellcode

Date D   Description Plat. Author
2017-01-17   Windows x64 - CreateRemoteThread() DLL Injection Shellcode (584 bytes) 1 SHELLCODE Roziul Hasan Khan Shifat
2017-01-03   Windows x64 - Password Protected Bind Shellcode (825 bytes) 5 SHELLCODE Roziul Hasan Khan Shifat
2016-12-19   Linux/x86 - /bin/bash -c Arbitrary Command Execution Shellcode (72 bytes) 9 SHELLCODE Filippo Bersani
2016-12-07   Linux/x86 - Netcat (-e option disabled) Reverse Shell Shellcode (180 bytes) 14 SHELLCODE Filippo Bersani
2016-11-28   Linux/x86 - Egg-hunter Shellcode (25 bytes) 11 SHELLCODE Filippo Bersani
2016-11-24   Windows x64 - Download & Execute Shellcode (358 bytes) 17 SHELLCODE Roziul Hasan Khan Shifat
2016-11-23   Linux/x86-64 - /bin/sh -c reboot Shellcode (89 bytes) 9 SHELLCODE Ashiyane Digital Security Team
2016-11-21   Windows x64 - Reverse Shell TCP Shellcode (694 bytes) 11 SHELLCODE Roziul Hasan Khan Shifat
2016-10-18   Windows x86 - Keylogger Reverse UDP Shellcode (493 bytes) 23 SHELLCODE Fugu
2016-10-18   Windows x64 - WinExec() Shellcode (93 bytes) 15 SHELLCODE Roziul Hasan Khan Shifat

Papers

Date D   Description Plat. Author
2017-01-12   OpenSSL - Weak KDF 7 PAPERS anonymous
2014-08-27   SSDP Amplification Scanner 111 PAPERS SaMaN
2014-06-26   [Hacking-Contest] SSH Server wrapper 91 PAPERS Jakob Lell
2012-03-20   Full MSSQL Injection PWNage 223 PAPERS CWH Underground
2011-10-12   Reverse Shell Cheat Sheet 129 PAPERS pentestmonkey
2011-10-09   Beyond SQLi: Obfuscate and Bypass 114 PAPERS ZeQ3uL
2011-06-02   Local File Inclusion to Remote Command Execution using SSH 145 PAPERS LaNMaSteR53
2011-04-27   offsec官方渗透测试报告 370 PAPERS admin