Exploit-DB.com RSS Feed https://www.exploit-db.com en-us The Exploit Database - Exploits, Shellcode, 0days, Remote Exploits, Local Exploits, Web Apps, Vulnerability Reports, Security Articles, Tutorials and more. Sun, 17 May 2026 17:30:03 +0000 Sun, 17 May 2026 17:30:03 +0000 [local] Windows Snipping Tool - NTLMv2 Hash Hijack https://www.exploit-db.com/exploits/52567 Windows Snipping Tool - NTLMv2 Hash Hijack Fri, 15 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52567 [local] Remote Sunrise Helper for Windows 2026.14 - Unauthenticated File/Directory Listing https://www.exploit-db.com/exploits/52566 Remote Sunrise Helper for Windows 2026.14 - Unauthenticated File/Directory Listing Fri, 15 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52566 [local] Remote Sunrise Helper for Windows 2026.14 - Remote Code Execution https://www.exploit-db.com/exploits/52565 Remote Sunrise Helper for Windows 2026.14 - Remote Code Execution Fri, 15 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52565 [webapps] WordPress Plugin Supsystic Contact Form 1.7.36 - SSTI https://www.exploit-db.com/exploits/52564 WordPress Plugin Supsystic Contact Form 1.7.36 - SSTI Thu, 14 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52564 [webapps] Apache HertzBeat 1.8.0 - Remote Code Execution https://www.exploit-db.com/exploits/52563 Apache HertzBeat 1.8.0 - Remote Code Execution Thu, 14 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52563 [webapps] ePati Antikor NGFW 2.0.1301 - Authentication Bypass https://www.exploit-db.com/exploits/52562 ePati Antikor NGFW 2.0.1301 - Authentication Bypass Thu, 14 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52562 [webapps] PJPROJECT 2.16 - Heap Bufferoverflow https://www.exploit-db.com/exploits/52561 PJPROJECT 2.16 - Heap Bufferoverflow Thu, 14 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52561 [webapps] Ninja Forms Uploads - Unauthenticated PHP File Upload https://www.exploit-db.com/exploits/52560 Ninja Forms Uploads - Unauthenticated PHP File Upload Wed, 13 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52560 [webapps] glances 4.5.2 - command injection https://www.exploit-db.com/exploits/52559 glances 4.5.2 - command injection Wed, 13 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52559 [webapps] coreruleset 4.21.0 - Firewall Bypass https://www.exploit-db.com/exploits/52558 coreruleset 4.21.0 - Firewall Bypass Wed, 13 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52558 [webapps] Flowise < 3.0.5 - Missing Authentication for Critical Function https://www.exploit-db.com/exploits/52557 Flowise < 3.0.5 - Missing Authentication for Critical Function Wed, 13 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52557 [remote] telnetd 2.7 - Buffer Overflow https://www.exploit-db.com/exploits/52556 telnetd 2.7 - Buffer Overflow Thu, 07 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52556 [webapps] Ghost CMS 6.19.0 - SQLi https://www.exploit-db.com/exploits/52555 Ghost CMS 6.19.0 - SQLi Thu, 07 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52555 [webapps] LuaJIT 2.1.1774638290 - Arbitrary Code Execution https://www.exploit-db.com/exploits/52554 LuaJIT 2.1.1774638290 - Arbitrary Code Execution Thu, 07 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52554 [webapps] Bludit CMS 3.18.4 - RCE https://www.exploit-db.com/exploits/52553 Bludit CMS 3.18.4 - RCE Thu, 07 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52553 [local] NocoBase 2.0.27 - VM Sandbox Escape https://www.exploit-db.com/exploits/52552 NocoBase 2.0.27 - VM Sandbox Escape Thu, 07 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52552 [webapps] ThingsBoard IoT Platform 4.2.0 - Server-Side Request Forgery (SSRF) https://www.exploit-db.com/exploits/52551 ThingsBoard IoT Platform 4.2.0 - Server-Side Request Forgery (SSRF) Thu, 07 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52551 [local] Linux Kernel proc_readdir_de() 6.18-rc5 - Local Privilege Escalation https://www.exploit-db.com/exploits/52550 Linux Kernel proc_readdir_de() 6.18-rc5 - Local Privilege Escalation Mon, 04 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52550 [local] Linux nf_tables 6.19.3 - Local Privilege Escalation https://www.exploit-db.com/exploits/52549 Linux nf_tables 6.19.3 - Local Privilege Escalation Mon, 04 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52549 [hardware] Linksys E1200 2.0.04 - Authenticated Stack Buffer Overflow (RCE) https://www.exploit-db.com/exploits/52548 Linksys E1200 2.0.04 - Authenticated Stack Buffer Overflow (RCE) Mon, 04 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52548 [webapps] MindsDB 25.9.1.1 - Path Traversal https://www.exploit-db.com/exploits/52547 MindsDB 25.9.1.1 - Path Traversal Mon, 04 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52547 [local] Windows 11 24H2 - Local Privilege Escalation https://www.exploit-db.com/exploits/52546 Windows 11 24H2 - Local Privilege Escalation Mon, 04 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52546 [webapps] Traccar GPS Tracking System 6.11.1 - Cross-Site WebSocket Hijacking (CSWSH) https://www.exploit-db.com/exploits/52545 Traccar GPS Tracking System 6.11.1 - Cross-Site WebSocket Hijacking (CSWSH) Mon, 04 May 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52545 [webapps] FUXA 1.2.8 - Authentication Bypass + RCE Exploit https://www.exploit-db.com/exploits/52544 FUXA 1.2.8 - Authentication Bypass + RCE Exploit Thu, 30 Apr 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52544 [webapps] Python-Multipart 0.0.22 - Path Traversal https://www.exploit-db.com/exploits/52543 Python-Multipart 0.0.22 - Path Traversal Thu, 30 Apr 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52543 [local] Google Chrome 145.0.7632.75 - CSSFontFeatureValuesMap https://www.exploit-db.com/exploits/52542 Google Chrome 145.0.7632.75 - CSSFontFeatureValuesMap Thu, 30 Apr 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52542 [local] Windows 11 23H2 - Denial of Service (DoS) https://www.exploit-db.com/exploits/52541 Windows 11 23H2 - Denial of Service (DoS) Thu, 30 Apr 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52541 [webapps] Repetier-Server 1.4.10 - Path Traversal https://www.exploit-db.com/exploits/52540 Repetier-Server 1.4.10 - Path Traversal Thu, 30 Apr 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52540 [webapps] HUSTOJ Zip-Slip v26.01.24 - RCE https://www.exploit-db.com/exploits/52539 HUSTOJ Zip-Slip v26.01.24 - RCE Thu, 30 Apr 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52539 [webapps] BusyBox 1.37.0 - Path Traversal https://www.exploit-db.com/exploits/52538 BusyBox 1.37.0 - Path Traversal Thu, 30 Apr 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52538 [local] Windows 11 25H2 - Heap Overflow https://www.exploit-db.com/exploits/52537 Windows 11 25H2 - Heap Overflow Thu, 30 Apr 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52537 [webapps] JUNG Smart Visu Server 1.1.1050 - Dos https://www.exploit-db.com/exploits/52536 JUNG Smart Visu Server 1.1.1050 - Dos Thu, 30 Apr 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52536 [webapps] SumatraPDF 3.5.2 - Remote Code Execution https://www.exploit-db.com/exploits/52535 SumatraPDF 3.5.2 - Remote Code Execution Thu, 30 Apr 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52535 [webapps] NiceGUI 3.6.1 - Path Traversal https://www.exploit-db.com/exploits/52534 NiceGUI 3.6.1 - Path Traversal Thu, 30 Apr 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52534 [webapps] Frigate NVR 0.16.3 - Remote Code Execution https://www.exploit-db.com/exploits/52533 Frigate NVR 0.16.3 - Remote Code Execution Thu, 30 Apr 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52533 [webapps] Js2Py 0.74 - RCE https://www.exploit-db.com/exploits/52532 Js2Py 0.74 - RCE Thu, 30 Apr 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52532 [webapps] Camaleon CMS v2.9.0 - Path Traversal https://www.exploit-db.com/exploits/52531 Camaleon CMS v2.9.0 - Path Traversal Thu, 30 Apr 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52531 [webapps] Cybersecurity AI (CAI) Framework 0.5.10 - Command Injection https://www.exploit-db.com/exploits/52530 Cybersecurity AI (CAI) Framework 0.5.10 - Command Injection Thu, 30 Apr 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52530 [webapps] Erugo 0.2.14 - Remote Code Execution (RCE) https://www.exploit-db.com/exploits/52529 Erugo 0.2.14 - Remote Code Execution (RCE) Thu, 30 Apr 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52529 [webapps] deephas 1.0.7 - Prototype Pollution https://www.exploit-db.com/exploits/52528 deephas 1.0.7 - Prototype Pollution Thu, 30 Apr 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52528 [webapps] SUSE Manager 4.3.15 - Code Execution https://www.exploit-db.com/exploits/52527 SUSE Manager 4.3.15 - Code Execution Thu, 30 Apr 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52527 [webapps] HAX CMS 24.x - Stored Cross-Site Scripting (XSS) https://www.exploit-db.com/exploits/52526 HAX CMS 24.x - Stored Cross-Site Scripting (XSS) Wed, 29 Apr 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52526 [webapps] Craft CMS 5.6.16 - RCE https://www.exploit-db.com/exploits/52525 Craft CMS 5.6.16 - RCE Wed, 29 Apr 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52525 [local] GNU InetUtils 2.6 - Telnetd Remote Privilege Escalation https://www.exploit-db.com/exploits/52524 GNU InetUtils 2.6 - Telnetd Remote Privilege Escalation Wed, 29 Apr 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52524 [webapps] phpMyFAQ 4.0.16 - Improper Authorization https://www.exploit-db.com/exploits/52523 phpMyFAQ 4.0.16 - Improper Authorization Wed, 29 Apr 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52523 [webapps] GeographicLib v2.5.1 - stack buffer overflow https://www.exploit-db.com/exploits/52522 GeographicLib v2.5.1 - stack buffer overflow Wed, 29 Apr 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52522 [local] OpenWrt 23.05 - Authenticated Remote Code Execution (RCE) https://www.exploit-db.com/exploits/52521 OpenWrt 23.05 - Authenticated Remote Code Execution (RCE) Wed, 29 Apr 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52521 [webapps] OpenKM 6.3.12 - Multiple https://www.exploit-db.com/exploits/52520 OpenKM 6.3.12 - Multiple Wed, 29 Apr 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52520 [webapps] GUnet OpenEclass E-learning platform < 4.2 - Remote Code Execution (RCE) https://www.exploit-db.com/exploits/52519 GUnet OpenEclass E-learning platform < 4.2 - Remote Code Execution (RCE) Wed, 29 Apr 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52519 [webapps] JuzaWeb CMS 3.4.2 - Authenticated Remote Code Execution https://www.exploit-db.com/exploits/52518 JuzaWeb CMS 3.4.2 - Authenticated Remote Code Execution Wed, 29 Apr 2026 00:00:00 +0000 https://www.exploit-db.com/exploits/52518