The Exploit Database - Exploits, Shellcode, 0days, Remote Exploits, Local Exploits, Web Apps, Vulnerability Reports, Security Articles, Tutorials and more.

The Exploit Database is a CVE compliant archive of public exploits and corresponding vulnerable software, developed for use by penetration testers and vulnerability researchers.

Apr 22, 2025 · WordPress Core 6.2 - Directory Traversal. CVE-2023-2745 . webapps exploit for PHP platform

Apr 22, 2025 · * Exploit Title : OpenSSH server (sshd) 9.8p1 - Race Condition * Author : Milad Karimi (Ex3ptionaL) * Date : 2025-04-16 * * Description: * Targets a signal handler race condition in …

Apr 22, 2025 · Firefox ESR 115.11 - PDF.js Arbitrary JavaScript execution. CVE-2024-4367 . remote exploit for Multiple platform

Jan 25, 2017 · GNU Screen 4.5.0 - Local Privilege Escalation.. local exploit for Linux platform

Jan 8, 2020 · Online Book Store 1.0 - Unauthenticated Remote Code Execution.. webapps exploit for PHP platform

The following graphs and statistics provide you with a glimpse of the entries that have been added to the Exploit Database over the years. They will be re-generated, at minimum, on a monthly basis and will …

Aug 18, 2010 · versions 3.0.20 through 3.0.25rc3 when using the non-default "username map script" configuration option. By specifying a username containing shell meta characters, attackers can …

Archived security papers and articles in various languages.