combined exploit-db.com and osvdb.org unofficial mirror
Unlock the planet




Remote Exploits
Oracle ATS Arbitrary File Upload metasploit 2016-05-25 java
Ubiquiti airOS Arbitrary File Upload metasploit 2016-05-25 unix
PowerFolder Server 10.4.321 - Remote Code Execution Hans-Martin Muench 2016-05-25 java
Cisco ASA Software 8.x / 9.x - IKEv1 and IKEv2 Buffer Overflow Exodus Intelligence 2016-05-17 hardware
Dell SonicWALL Scrutinizer 11.01 methodDetail SQL Injection metasploit 2016-05-17 multiple
Microsoft Windows Media Center .MCL File Processing Remote Code Execution (MS16-059) Eduardo Braun Prado 2016-05-12 windows
Dell SonicWall Scrutinizer <= 11.0.1 - setUserSkin/deleteTab SQL Injection Remote Code Execution mr_me 2016-05-09 windows
Ruby on Rails Development Web Console (v2) Code Execution metasploit 2016-05-09 ruby
Acunetix WVS 10 - Remote Command Execution (System) Daniele Linguaglossa 2016-05-02 windows
Apache Struts Dynamic Method Invocation Remote Code Execution metasploit 2016-05-02 linux

Local Exploits
Operation Technology ETAP 14.1.0 - Local Privilege Escalation LiquidWorm 2016-05-23 windows
VirIT Explorer Lite & Pro 8.1.68 - Local Privilege Escalation Paolo Stagno 2016-05-19 windows
Multiples Nexon Games - Unquoted Path Privilege Escalation Cyril Vallicari 2016-05-16 windows
Hex : Shard of Fate 1.0.1.026 - Unquoted Path Privilege Escalation Cyril Vallicari 2016-05-16 windows
NRSS Reader 0.3.9 - Local Stack-Based Overflow Juan Sacco 2016-05-13 linux
runAV mod_security - Arbitrary Command Execution R-73eN 2016-05-13 linux
FileZilla FTP Client 3.17.0.0 - Unquoted Path Privilege Escalation Cyril Vallicari 2016-05-11 windows
Intuit QuickBooks Desktop 2007 - 2016 - Arbitrary Code Execution Maxim Tomashevich 2016-05-11 windows
i.FTP 2.21 - Host Address / URL Field SEH Exploit Tantaryu MING 2016-05-09 windows
Certec EDV atvise SCADA Server 2.5.9 - Privilege Escalation LiquidWorm 2016-05-09 windows

Web Application Exploits
AfterLogic WebMail Pro ASP.NET 6.2.6 - Administrator Account Disclosure via XXE Injection Mehmet Ince 2016-05-24 asp
Job Script by Scubez - Remote Code Execution Bikramaditya Guha 2016-05-23 php
XenAPI 1.4.1 for XenForo - Multiple SQL Injections Julien Ahrens 2016-05-23 php
SAP NetWeaver AS JAVA 7.1 - 7.5 - SQL Injection ERPScan 2016-05-19 xml
SAP NetWeaver AS JAVA 7.1 - 7.5 - Information Disclosure ERPScan 2016-05-19 xml
Magento < 2.0.6 - Unauthenticated Arbitrary Unserialize -> Arbitrary Write File agix 2016-05-18 php
Meteocontrol WEB’log - Admin Password Disclosure Karn Ganeshen 2016-05-17 multiple
SAP xMII 15.0 - Directory Traversal ERPScan 2016-05-17 java
CakePHP Framework 3.2.4 - IP Spoofing Dawid Golunski 2016-05-16 php
eXtplorer 2.1.9 - Archive Path Traversal hyp3rlinx 2016-05-16 php

DoS/PoC Exploits
Operation Technology ETAP 14.1.0 - Multiple Stack Buffer Overrun Vulnerabilities LiquidWorm 2016-05-23 windows
Apple Quicktime - MOV File Parsing Memory Corruption Vulnerability Francis Provencher 2016-05-19 osx
4digits 1.1.4 - Local Buffer Overflow N_A 2016-05-19 linux
Adobe Flash - JXR Processing Out-of-Bounds Read Google Security Research 2016-05-17 multiple
Adobe Flash - Out-of-Bounds Read when Placing Object Google Security Research 2016-05-17 multiple
Adobe Flash - Overflow in Processing Raw 565 Textures Google Security Research 2016-05-17 multiple
Adobe Flash - Heap Overflow in ATF Processing (Image Reading) Google Security Research 2016-05-17 multiple
Adobe Flash - MP4 File Stack Corruption Google Security Research 2016-05-17 multiple
Adobe Flash - Type Confusion in FileReference Constructor Google Security Research 2016-05-17 multiple
Adobe Flash - addProperty Use-After-Free Google Security Research 2016-05-17 multiple

Shellcode
Linux x86_64 Information Stealer Shellcode Roziul Hasan Khan Shifat 2016-05-23 lin_x86-64
All Windows Null-Free Shellcode - Functional Keylogger to File - 601 (0x0259) bytes Fugu 2016-05-10 windows
Linux x86_64 Shellcode - Bind TCP Port 1472 (ipv6) Roziul Hasan Khan Shifat 2016-05-04 lin_x86-64
Linux x86_64 Shellcode - Reverse TCP (ipv6) Roziul Hasan Khan Shifat 2016-05-04 lin_x86-64
.Net Framework Execute Native x86 Shellcode Jacky5112 2016-05-02 win32
Linux x64 - Bind Shell Shellcode Generator Ajith Kp 2016-04-25 lin_x86-64
Linux x86 Reverse TCP Shellcode (ipv6) Roziul Hasan Khan Shifat 2016-04-25 lin_x86
Linux x86 Shellcode - Bind TCP Port 1472 (ipv6) Roziul Hasan Khan Shifat 2016-04-25 lin_x86
Windows Null-Free Shellcode - Primitive Keylogger to File - 431 (0x01AF) bytes Fugu 2016-04-25 windows
Linux/x86_64 - bindshell (Port 5600) - 86 bytes Ajith Kp 2016-04-21 lin_x86-64