The Exploit Database

The Exploit Database (EDB) – an ultimate archive of exploits and vulnerable software. A great resource for penetration testers, vulnerability researchers, and security addicts alike. Our aim is to collect exploits from submittals and mailing lists and concentrate them in one, easy to navigate database.

Remote Exploits

Date	Description		Plat.	Author
2018-12-29	Hashicorp Consul Rexec Remote Command Execution	153	REMOTE	Quentin Kaiser
2018-12-29	Hashicorp Consul Services API Remote Command Execution	28	REMOTE	Quentin Kaiser
2018-12-25	Kubernetes - (Authenticated) Arbitrary Requests	23	REMOTE	evict
2018-12-25	Kubernetes - (Unauthenticated) Arbitrary Requests	24	REMOTE	evict
2018-12-25	Netatalk - Bypass Authentication	23	REMOTE	Tenable NS
2018-12-24	Netatalk Authentication Bypass	9	REMOTE	Jacob Baines
2018-12-20	Erlang Port Mapper Daemon Cookie Remote Code Execution	21	REMOTE	Milton Valencia
2018-12-20	Rukovoditel Project Management CRM 2.3.1 Remote Code Execution	6	REMOTE	AkkuS
2018-12-17	Cisco RV110W Password Disclosure / Command Execution	53	REMOTE	RySh
2018-12-14	Safari Proxy Object Type Confusion	20	REMOTE	saelo

Local Exploits

Date	Description		Plat.	Author
2019-01-03	Ayukov NFTP FTP Client 2.0 Buffer Overflow	47	LOCAL	Uday Mittal
2018-12-28	Terminal Services Manager 3.1 Local Buffer Overflow	9	LOCAL	bzyo
2018-12-28	Iperius Backup 5.8.1 Buffer Overflow	11	LOCAL	bzyo
2018-12-28	MAGIX Music Editor 3.1 Buffer Overflow	2	LOCAL	bzyo
2018-12-25	Keybase keybase-redirector - '$PATH' Local Privilege Escalation	12	LOCAL	mirchr
2018-12-24	ATool 1.0.0.22 Buffer Overflow	7	LOCAL	Aloyce J. Makalanga
2018-12-24	AnyBurn 4.3 Local Buffer Overflow	3	LOCAL	Matteo Malvica
2018-12-24	GIGABYTE Driver Privilege Escalation	4	LOCAL	SecureAuth
2018-12-24	ASUS Driver Privilege Escalation	9	LOCAL	http://www.secureauth.com/
2018-12-21	XMPlay 3.8.3 Local Stack Overflow	4	LOCAL	s7acktrac3

Web Applications

Date	Description		Plat.	Author
2019-01-04	Apache CouchDB 2.3.0 Cross Site Request Forgery	100	WEB	Ozer Goker
2019-01-03	Vtiger CRM 7.1.0 Remote Code Execution	40	WEB	Ozkan Mustafa Akkus
2018-12-25	phpMyAdmin 4.8.4 - 'AllowArbitraryServer' Arbitrary File Read	127	WEB	VulnSpy
2018-12-17	Huawei Router HG532e Command Execution	54	WEB	Rebellion
2018-12-12	ThinkPHP 5.x Remote Code Execution	185	WEB	VulnSpy
2018-12-12	WordPress Snap Creek Duplicator Code Injection	66	WEB	Julien Legras
2018-12-12	PrestaShop 1.6.x / 1.7.x Remote Code Execution	32	WEB	farisv
2018-12-10	i-doit CMDB 1.11.2 - Remote Code Execution	51	WEB	AkkuS
2018-12-06	HasanMWB 1.0 SQL Injection	34	WEB	Ihsan Sencan
2018-12-05	NUUO NVRMini2 3.9.1 - Authenticated Command Injection	19	WEB	Artem Metla

DoS/PoC

Date	Description		Plat.	Author
2019-01-03	EZ CD Audio Converter 8.0.7 Denial Of Service	20	DOS	Achilles
2019-01-03	NetworkSleuth 3.0.0.0 Denial Of Service	10	DOS	Luis Martinez
2019-01-03	NBMonitor Network Bandwidth Monitor 1.6.5.0 Denial Of Service	11	DOS	Luis Martinez
2018-12-29	WebKit JSC AbstractValue::set Use-After-Free	9	DOS	lokihardt
2018-12-29	WebKit JSC JSArray::shiftCountWithArrayStorage Out-Of-Band Read / Write	3	DOS	lokihardt
2018-12-28	Armitage 1.14.11 Denial Of Service	6	DOS	Mr Winst0n
2018-12-28	NetShareWatcher 1.5.8 Denial Of Service	6	DOS	T3jv1l
2018-12-28	ShareAlarmPro 2.1.4 Denial Of Service	5	DOS	T3jv1l
2018-12-28	Product Key Explorer 4.0.9 Denial Of Service	7	DOS	T3jv1l
2018-12-25	Google Chrome 70 - SQLite Magellan Crash (PoC)	23	DOS	zhuowei

Shellcode

Date	Description		Plat.	Author
2018-12-25	Linux/x86 - Kill All Processes Shellcode (14 bytes)	37	SHELLCODE	strider
2018-12-20	Linux/x64 - Disable ASLR Security Shellcode (93 Bytes)	7	SHELLCODE	Kağan Çapar
2018-12-12	Linux/x86 - execve(/usr/bin/ncat -lvp 1337 -e /bin/bash)+Null-Free Shellcode (95	6	SHELLCODE	T3jv1l
2018-12-05	Linux/x64 - Reverse (0.0.0.0:1907/TCP) Shell Shellcode (119 Bytes)	20	SHELLCODE	Kağan Çapar
2018-12-05	Linux/x86 - /usr/bin/head -n99 cat etc/passwd Shellcode (61 Bytes)	7	SHELLCODE	Nelis
2018-11-14	Linux/x86 - Bind (99999/TCP) NetCat Traditional (/bin/nc) Shell (/bin/bash) Shel	13	SHELLCODE	Javier Tello
2018-11-01	Windows/x64 - Remote (Bind TCP) Keylogger Shellcode (864 bytes) (Generator)	53	SHELLCODE	Roziul Hasan Khan Shifat
2018-10-25	Linux/x86 - execve(/bin/cat /etc/ssh/sshd_config) Shellcode 44 Bytes	17	SHELLCODE	Goutham Madhwaraj
2018-10-09	Linux/MIPS (Big Endian) - execve(/bin/sh) + Reverse TCP 192.168.2.157/31337 Shel	28	SHELLCODE	cq674350529
2018-10-09	Linux/x86 - execve(/bin/sh) + MMX/ROT13/XOR Shellcode (Encoder/Decoder) (104 byt	14	SHELLCODE	Kartik Durg

Papers

Date	Description		Plat.	Author
2018-11-16	The Powerful Resource of PHP Stream Wrappers	40	PAPERS	Netsparker
2018-11-01	Phrack: Viewer Discretion Advised: (De)coding an iOS Kernel Vulnerability (Adam	21	PAPERS	phrack
2018-10-09	A Red Teamer’s guide to pivoting	27	PAPERS	Artem Kondratenko
2018-10-08	Phrack: Twenty years of Escaping the Java Sandbox (Ieu Eauvidoum & disk noise)	13	PAPERS	phrack
2018-01-15	Phrack: .NET Instrumentation via MSIL bytecode injection (Antonio "s4tan" Parata	230	PAPERS	phrack
2017-08-28	Abusing Token Privileges For LPE	354	PAPERS	drone and breenmachine
2017-01-12	OpenSSL - Weak KDF	292	PAPERS	anonymous
2014-08-27	SSDP Amplification Scanner	311	PAPERS	SaMaN
2014-06-26	[Hacking-Contest] SSH Server wrapper	289	PAPERS	Jakob Lell
2012-03-20	Full MSSQL Injection PWNage	460	PAPERS	CWH Underground