The Exploit Database
The Exploit Database (EDB) – an ultimate archive of exploits and vulnerable software. A great resource for penetration testers, vulnerability researchers, and security addicts alike. Our aim is to collect exploits from submittals and mailing lists and concentrate them in one, easy to navigate database.
Remote Exploits
| Date | D | A | V | Description | Plat. | Author | |
|---|---|---|---|---|---|---|---|
| 2012-01-27 |  | - |  | HP Diagnostics Server magentservice.exe Overflow | 39 | windows | metasploit |
| 2012-01-26 | | - |  | Sysax Multi Server 5.50 Create Folder Remote Code Exec BoF (MSF Module) | 281 | windows | Craig Freyman |
| 2012-01-21 | |  | | Savant Web Server 3.1 Buffer Overflow Exploit (Egghunter) | 2234 | windows | red-dragon |
| 2012-01-20 | | | | Avaya WinPDM UniteHostRouter <= 3.8.2 Remote Pre-Auth Command Execute | 1248 | windows | Abysssec |
| 2012-01-20 | | - | | HP OpenView Network Node Manager ov.dll _OVBuildPath Buffer Overflow | 831 | windows | metasploit |
| 2012-01-20 | | - | | Gitorious Arbitrary Command Execution | 1185 | linux | metasploit |
| 2012-01-18 | | - | | HP Easy Printer Care XMLCacheMgr Class ActiveX Control Remote Code Execution | 1087 | windows | metasploit |
Local Exploits
| Date | D | A | V | Description | Plat. | Author | |
|---|---|---|---|---|---|---|---|
| 2012-01-23 | | - | | Mempodipper - Linux Local Root for >=2.6.39, 32-bit and 64-bit | 6517 | linux | zx2c4 |
| 2012-01-17 | | - | | BS.Player 2.57 Buffer Overflow Exploit (Unicode SEH) | 864 | windows | metasploit |
| 2012-01-14 | | - | | Microsoft Windows Assembly Execution Vulnerability MS12-005 | 4099 | windows | Byoungyoung Lee |
| 2012-01-14 | | - | | Adobe Reader U3D Memory Corruption Vulnerability | 1429 | windows | metasploit |
| 2012-01-10 | | | | Blade API Monitor 3.6.9.2 Unicode Stack Buffer Overflow | 859 | windows | FullMetalFouad |
| 2012-01-08 | | - | | Microsoft Office 2003 Home/Pro 0day | 5596 | windows | b33f g11tch |
| 2011-12-20 | | - | | TORCS 1.3.1 acc Buffer Overflow | 2074 | windows | Andrés Gómez |
Web Applications
| Date | D | A | V | Description | Plat. | Author | |
|---|---|---|---|---|---|---|---|
| 2012-01-27 | | - | | vBSEO <= 3.6.0 "proc_deutf()" Remote PHP Code Injection Exploit | 49 | php | EgiX |
| 2012-01-26 | | - | | Peel SHOPPING - version 2.8 and version 2.9 xss/sql inject Vulnerability | 379 | php | Cyber-Crystal |
| 2012-01-26 | | - | | phplist - version 2.10.9 CSRF/XSS Vulnerability | 469 | php | Cyber-Crystal |
| 2012-01-26 | | - | | VR GPub 4.0 CSRF Vulnerability | 395 | php | Cyber-Crystal |
| 2012-01-25 | | | | WordPress <= 3.3.1 Multiple Vulnerabilities | 4673 | php | Trustwave's Spide. |
| 2012-01-24 | | - | | Stoneware WebNetwork6 Multiple Vulnerabilities | 756 | jsp | Jacob Holcomb |
| 2012-01-24 | | - | | DirectAdmin ADD Sub Domain CSRF Exploit | 1297 | php | Turkeshan |
DoS/PoC
| Date | D | A | V | Description | Plat. | Author | |
|---|---|---|---|---|---|---|---|
| 2012-01-20 | | - | | VLC 1.2.0 (libtaglib_pluggin.dll) DoS | 1045 | windows | Mitchell Adair |
| 2012-01-17 | | - | | Linux IGMP Remote Denial Of Service (Introduced in linux-2.6.36) | 2675 | linux | Kingcope |
| 2012-01-14 | | - | | PHP 5.3.8 Multiple Vulnerabilities | 3024 | multiple | Maksymilian Arcie. |
| 2012-01-10 | | - | | Novell Netware XNFS caller_name xdrDecodeString Remote Code Execution | 770 | netware | Francis Provenche. |
| 2012-01-09 | | | | GPSMapEdit v1.1.73.2 (.lst) Local Denial of Service Vulnerability | 689 | windows | Julien Ahrens |
| 2012-01-08 | | | | M-Player 0.4 Local Denial of Service Vulnerability | 651 | windows | JaMbA |
| 2012-01-08 | | - | | AirTies-4450 Unauthorized Remote Reboot | 695 | hardware | rigan |
Shellcode
| Date | D | Description | Plat. | Author | |
|---|---|---|---|---|---|
| 2012-01-17 | | Linux/x86 Search For php,html Writable Files and Add Your Code | 1719 | lin/x86 | rigan |
| 2011-12-31 | | Linux/x86 Polymorphic ShellCode - setuid(0)+setgid(0)+add user 'iph' without password to /etc/passwd | 3494 | lin/x86 | pentesters.ir |
| 2011-12-10 | | Linux/MIPS - reboot() - 32 bytes. | 3356 | linux/mips | rigan |
| 2011-12-10 | | Linux/MIPS - connect back shellcode (port 0x7a69) - 168 bytes. | 1834 | linux/mips | rigan |
| 2011-12-03 | | linux/x86-64 execve(/bin/sh) 52 bytes | 3316 | lin/x86-64 | X-h4ck |
| 2011-11-27 | | Linux/MIPS - add user(UID 0) with password - 164 bytes | 3594 | linux | rigan |
| 2011-11-27 | | Linux/MIPS - execve /bin/sh - 48 bytes | 1451 | linux | rigan |
Papers
| Date | D | Description | Author |
|---|---|---|---|
| 2012-01-26 | | [Spanish] El fingerprinting dentro de la seguridad web | The X-C3LL |
| 2012-01-24 | | A Backdoor in the Next Generation Active Directory | Dmitry Evteev |
| 2012-01-20 | | iPhone Forensics on iOS 5 | Satish |
| 2012-01-18 | | Malware Reverse Engineering Part 1 - Static Analysis | Rick Flores |
| 2012-01-10 | | Buffer Overflows: Anatomy of an Exploit | Nevermore |
| 2012-01-03 | | [Turkish] Linux 2011 Kernel Hooking And Coding Root Exploits | Turkeshan |
| 2012-01-02 | | [Hebrew] Digital Whisper Security Magazine #28 | cp77fk4r |