Blog RSSExploits RSSFacebook
CVE Certified

The Exploit Database

GHDB

 

The Exploit Database (EDB) – an ultimate archive of exploits and vulnerable software. A great resource for penetration testers, vulnerability researchers, and security addicts alike. Our aim is to collect exploits from submittals and mailing lists and concentrate them in one, easy to navigate database.


Remote Exploits

Date D   Description Plat. Author
2017-12-15   Palo Alto Networks Firewalls - Remote root Code Execution 2 REMOTE Philip Pettersson
2017-12-14   Advantech WebAccess 8.2 Stack Buffer Overflow 5 REMOTE mr_me
2017-12-11   LabF nfsAxe FTP Client 3.7 - Buffer Overflow (DEP Bypass) 2 REMOTE wetw0rk
2017-12-07   Claymore Dual ETH + DCR/SC/LBC/PASC GPU Miner - Stack Buffer Overflow / Path Tra 12 REMOTE tintinweb
2017-12-07   LaCie 5big Network 2.2.8 - Command Injection 2 REMOTE Timo Sablowski
2017-12-06   Polycom Shell HDX Series Traceroute Command Execution 10 REMOTE Mumbai
2017-12-06   Microsoft Office Equation Editor Code Execution 13 REMOTE mumbai
2017-12-06   Claymore's Dual Miner 10.1 Stack Buffer Overflow 7 REMOTE tintinweb
2017-12-06   VX Search 10.2.14 - 'command_name' Buffer Overflow 3 REMOTE W01fier00t
2017-12-04   HP iMC Plat 7.2 - Remote Code Execution 8 REMOTE Chris Lyne

Local Exploits

Date D   Description Plat. Author
2017-12-14   glibc ld.so - Memory Leak / Buffer Overflow 1 LOCAL Qualys Corporation
2017-12-11   Apple macOS 10.13.1 (High Sierra) - 'Blank Root' Local Privilege Escalation 5 LOCAL Lemiorhan
2017-12-11   Apple macOS 10.13.1 (High Sierra) - Insecure Cron System Local Privilege Escalat 2 LOCAL Mark Wadham
2017-12-06   Proxifier for Mac 2.19 - Local root Privilege Escalation 6 LOCAL Mark Wadham
2017-12-06   Hashicorp vagrant-vmware-fusion 4.0.23 - Local root Privilege Escalation 5 LOCAL Mark Wadham
2017-12-06   Hashicorp vagrant-vmware-fusion 4.0.24 - Local root Privilege Escalation 7 LOCAL Mark Wadham
2017-12-06   Hashicorp vagrant-vmware-fusion 5.0.0 - Local root Privilege Escalation 4 LOCAL Mark Wadham
2017-12-06   Sera 1.2 - Local root Privilege Escalation / Password Disclosure 4 LOCAL Mark Wadham
2017-12-06   Hashicorp vagrant-vmware-fusion 5.0.1 - Local root Privilege Escalation 4 LOCAL Mark Wadham
2017-12-06   Hashicorp vagrant-vmware-fusion 5.0.3 - Local root Privilege Escalation 3 LOCAL Mark Wadham

Web Applications

Date D   Description Plat. Author
2017-12-14   Microsoft Office DDE Payload Delivery 4 WEB mumbai
2017-12-14   Dup Scout Enterprise 10.0.18 Buffer Overflow 2 WEB Chris Higgins
2017-12-14   pfSense 2.4.1 CSRF Error Page Clickjacking 2 WEB Yorick Koster
2017-12-06   WinduCMS 3.1 - Local File Disclosure 10 WEB Maciek Krupa
2017-12-04   Artica Web Proxy 3.06 - Remote Code Execution 10 WEB hyp3rlinx
2017-12-04   MistServer 2.12 - Cross-Site Scripting 4 WEB hyp3rlinx
2017-12-04   WinduCMS 3.1 Local File Disclosure 5 WEB Maciej Krupa
2017-11-30   osCommerce 2.3.4.1 - Arbitrary File Upload 13 WEB Simon Scannell
2017-11-29   Synology StorageManager 5.2 - Remote Root Command Execution 10 WEB SecuriTeam
2017-11-20   phpMyFAQ 2.9.9 Code Injection 28 WEB tomplixsee

DoS/PoC

Date D   Description Plat. Author
2017-12-13   macOS/iOS - Kernel Double Free due to Incorrect API Usage in Flow Divert Socket 2 DOS Google Security Research
2017-12-13   macOS - Kernel Code Execution due to Lack of Bounds Checking in AppleIntelCapriC 3 DOS Google Security Research
2017-12-13   macOS/iOS - Multiple Kernel Use-After-Frees due to Incorrect IOKit Object Lifeti 2 DOS Google Security Research
2017-12-12   macOS getrusage Stack Leak 3 DOS jannh
2017-12-12   macOS necp_get_socket_attributes so_pcb Type Confusion 3 DOS jannh
2017-12-12   macOS XNU Kernel - Memory Disclosure due to bug in Kernel API for Detecting Kern 3 DOS Google Security Research
2017-12-12   MikroTik 6.40.5 ICMP - Denial of Service 2 DOS FarazPajohan
2017-12-07   Linux Kernel - DCCP Socket Use-After-Free 6 DOS Mohamed Ghannam
2017-12-07   Microsoft Windows Defender - Controlled Folder Bypass Through UNC Path 6 DOS Google Security Research
2017-12-04   Abyss Web Server < 2.11.6 - Heap Memory Corruption 5 DOS hyp3rlinx

Shellcode

Date D   Description Plat. Author
2017-10-19   Windows x64 - API Hooking Shellcode (117 bytes) 44 SHELLCODE Roziul Hasan Khan Shifat
2017-10-16   Linux/x86 - execve(/bin/sh) Polymorphic Shellcode (30 bytes) 10 SHELLCODE Manuel Mancera
2017-09-27   Linux/x86_64 - mkdir() 'evil' Shellcode (30 bytes) 23 SHELLCODE Touhid M.Shaikh
2017-09-11   Linux/ARM (Raspberry Pi) - Reverse TCP Shell (192.168.0.12:4444/TCP) Shellcode ( 18 SHELLCODE Andrea Sindoni
2017-09-11   Linux/ARM (Raspberry Pi) - Bind TCP Shell (4444/TCP) Shellcode (192 bytes) 14 SHELLCODE Andrea Sindoni
2017-09-01   Linux/x86 - Fork Bomb Shellcode (9 bytes) 10 SHELLCODE Touhid M.Shaikh
2017-08-22   Linux/x86_64 - Fork Bomb Shellcode (11 bytes) 30 SHELLCODE Touhid M.Shaikh
2017-08-22   Linux/x86_64 - kill All Processes Shellcode (19 bytes) 25 SHELLCODE Touhid M.Shaikh
2017-08-21   Linux/x86-64 - Reverse TCP Shell (192.168.1.2:4444/TCP) Shellcode (153 bytes) 28 SHELLCODE Touhid M.Shaikh
2017-08-07   Linux x86 - /bin/sh Shellcode (24 bytes) 30 SHELLCODE Touhid M.Shaikh

Papers

Date D   Description Plat. Author
2017-08-28   Abusing Token Privileges For LPE 28 PAPERS drone and breenmachine
2017-01-12   OpenSSL - Weak KDF 72 PAPERS anonymous
2014-08-27   SSDP Amplification Scanner 143 PAPERS SaMaN
2014-06-26   [Hacking-Contest] SSH Server wrapper 125 PAPERS Jakob Lell
2012-03-20   Full MSSQL Injection PWNage 258 PAPERS CWH Underground
2011-10-12   Reverse Shell Cheat Sheet 152 PAPERS pentestmonkey
2011-10-09   Beyond SQLi: Obfuscate and Bypass 138 PAPERS ZeQ3uL
2011-06-02   Local File Inclusion to Remote Command Execution using SSH 192 PAPERS LaNMaSteR53
2011-04-27   offsec官方渗透测试报告 563 PAPERS admin