The Exploit Database

The Exploit Database (EDB) – an ultimate archive of exploits and vulnerable software. A great resource for penetration testers, vulnerability researchers, and security addicts alike. Our aim is to collect exploits from submittals and mailing lists and concentrate them in one, easy to navigate database.

Remote Exploits

Date	Description		Plat.	Author
2026-05-07	telnetd 2.7 - Buffer Overflow	27	REMOTE	jeffbarron
2026-02-11	Windows 10.0.17763.7009 - spoofing vulnerability	232	REMOTE	beatrizfn
2026-02-04	windows 10/11 - NTLM Hash Disclosure Spoofing	109	REMOTE	beatrizfn
2026-02-04	Redis 8.0.2 - RCE	180	REMOTE	Beatriz Fresno Naumova
2026-02-04	Ingress-NGINX Admission Controller v1.11.1 - FD Injection to RCE	105	REMOTE	Beatriz Fresno Naumova
2025-09-16	Ilevia EVE X1/X5 Server 4.7.18.0.eden - Reverse Rootshell	343	REMOTE	LiquidWorm
2025-09-16	ClipBucket 5.5.0 - Arbitrary File Upload	257	REMOTE	Mukundsinh Solanki (r00td3str0y3r)
2025-09-16	ClipBucket 5.5.2 Build #90 - Server-Side Request Forgery (SSRF)	169	REMOTE	Mukundsinh Solanki (r00td3str0y3r)
2025-09-16	HTTP/2 2.0 - Denial Of Service (DOS)	164	REMOTE	Madhusudhan Rajappa
2025-09-16	HTMLDOC 1.9.13 - Stack Buffer Overflow	147	REMOTE	wulfgarpro

Local Exploits

Date	Description		Plat.	Author
2026-05-21	Lenovo LegionSpace 1.7.11.2 - 'DAService' Unquoted Service Path	4	LOCAL	CENACIF-MX
2026-05-15	Windows Snipping Tool - NTLMv2 Hash Hijack	16	LOCAL	nu11secur1ty
2026-05-15	Remote Sunrise Helper for Windows 2026.14 - Unauthenticated File/Directory Listi	15	LOCAL	Chokri Hammedi
2026-05-15	Remote Sunrise Helper for Windows 2026.14 - Remote Code Execution	11	LOCAL	Chokri Hammedi
2026-05-07	NocoBase 2.0.27 - VM Sandbox Escape	21	LOCAL	onurcangencbilkent
2026-05-04	Linux Kernel proc_readdir_de() 6.18-rc5 - Local Privilege Escalation	27	LOCAL	aviralyash27
2026-05-04	Linux nf_tables 6.19.3 - Local Privilege Escalation	25	LOCAL	aviralyash27
2026-05-04	Windows 11 24H2 - Local Privilege Escalation	20	LOCAL	3302509675
2026-04-30	Google Chrome 145.0.7632.75 - CSSFontFeatureValuesMap	23	LOCAL	nu11secur1ty
2026-04-30	Windows 11 23H2 - Denial of Service (DoS)	18	LOCAL	tryhardertryh

Web Applications

Date	Description		Plat.	Author
2026-05-21	Cockpit 359 - RCE	4	WEB	Abdelazim Mohammed
2026-05-21	BookStack 25.12.1 - Denial of Service	5	WEB	Gabriel Rodrigues
2026-05-21	solaredge - (CSRF-OOB-Injection)	3	WEB	nu11secur1ty
2026-05-21	FUXA 1.2.9 - RCE	4	WEB	Anthony Cihan
2026-05-14	WordPress Plugin Supsystic Contact Form 1.7.36 - SSTI	25	WEB	bootstrapbool
2026-05-14	Apache HertzBeat 1.8.0 - Remote Code Execution	17	WEB	Brett Gervasoni
2026-05-14	ePati Antikor NGFW 2.0.1301 - Authentication Bypass	13	WEB	sadik
2026-05-14	PJPROJECT 2.16 - Heap Bufferoverflow	10	WEB	vabismo452
2026-05-13	Ninja Forms Uploads - Unauthenticated PHP File Upload	16	WEB	selim.lanouar
2026-05-13	glances 4.5.2 - command injection	12	WEB	best.sell

DoS/PoC

Date	Description		Plat.	Author
2025-07-28	Xlight FTP 1.1 - Denial Of Service (DOS)	139	DOS	Fernando Mengali
2024-08-28	Windows TCP/IP - RCE Checker and Denial of Service	148	DOS	Photubias
2024-03-28	RouterOS 6.40.5 - 6.44 and 6.48.1 - 6.49.10 - Denial of Service	129	DOS	ice-wzl
2024-02-26	Wyrestorm Apollo VX20 < 1.3.58 - Incorrect Access Control 'DoS'	121	DOS	hyp3rlinx
2024-02-19	XAMPP - Buffer Overflow POC	121	DOS	Talson
2024-02-13	VIMESA VHF/FM Transmitter Blue Plus 9.7.1 (doreboot) - Remote Denial Of Service	124	DOS	LiquidWorm
2024-02-09	Elasticsearch - StackOverflow DoS	132	DOS	TOUHAMI Kasbaoui
2024-02-02	Electrolink FM/DAB/TV Transmitter - Unauthenticated Remote DoS	144	DOS	LiquidWorm
2023-10-09	OpenPLC WebServer 3 - Denial of Service	98	DOS	Kai Feng
2023-10-09	Tinycontrol LAN Controller v3 (LK3) 1.58a - Remote Denial Of Service	116	DOS	LiquidWorm

Shellcode

Date	Description		Plat.	Author
2025-08-04	Linux/x86_64 - execve(_/bin/sh__[_-c__cmd]_NULL) Arbitrary Command Execution She	166	SHELLCODE	Muzaffer Umut ŞAHİN
2025-05-21	Windows 11 x64 - Reverse TCP Shellcode (564 bytes)	247	SHELLCODE	Victor Huerlimann
2025-05-21	Linux/x86 - Reverse TCP Shellcode (95 bytes)	180	SHELLCODE	Al Baradi Joy
2025-05-21	Linux/x86-64 - execve(_/bin/sh_) Shellcode (36 bytes)	146	SHELLCODE	Sayan Ray
2023-09-08	Windows/x64 - PIC Null-Free TCP Reverse Shell Shellcode (476 Bytes)	118	SHELLCODE	Senzee
2023-08-21	Linux/x64 - memfd_create ELF loader Shellcode (170 bytes)	134	SHELLCODE	Ivan Nikolsky
2023-07-28	Windows/x64 - PIC Null-Free Calc.exe Shellcode (169 Bytes)	132	SHELLCODE	Senzee
2023-04-25	Windows/x64 - Delete File shellcode / Dynamic PEB method null-free Shellcode	126	SHELLCODE	Nayani
2023-04-05	Linux/x86_64 - bash Shellcode with xor encoding	119	SHELLCODE	Jeenika Anadani
2023-04-03	Windows/x86 - Create Administrator User / Dynamic PEB & EDT method null-free She	135	SHELLCODE	Xavi Beltran

Papers

Date	Description		Plat.	Author
2018-11-16	The Powerful Resource of PHP Stream Wrappers	764	PAPERS	Netsparker
2018-11-01	Phrack: Viewer Discretion Advised: (De)coding an iOS Kernel Vulnerability (Adam	687	PAPERS	phrack
2018-10-09	A Red Teamer’s guide to pivoting	645	PAPERS	Artem Kondratenko
2018-10-08	Phrack: Twenty years of Escaping the Java Sandbox (Ieu Eauvidoum & disk noise)	1623	PAPERS	phrack
2018-01-15	Phrack: .NET Instrumentation via MSIL bytecode injection (Antonio "s4tan" Parata	1496	PAPERS	phrack
2017-08-28	Abusing Token Privileges For LPE	1026	PAPERS	drone and breenmachine
2017-01-12	OpenSSL - Weak KDF	1061	PAPERS	anonymous
2014-08-27	SSDP Amplification Scanner	798	PAPERS	SaMaN
2014-06-26	[Hacking-Contest] SSH Server wrapper	778	PAPERS	Jakob Lell
2012-03-20	Full MSSQL Injection PWNage	1043	PAPERS	CWH Underground