Exploit Database - Exploits for Penetration Testers, Researchers, and ...
The Exploit Database - Exploits, Shellcode, 0days, Remote Exploits, Local Exploits, Web Apps, Vulnerability Reports, Security Articles, Tutorials and more.
About the Exploit Database
The Exploit Database is a CVE compliant archive of public exploits and corresponding vulnerable software, developed for use by penetration testers and vulnerability researchers.
Google Hacking Database (GHDB) - Google Dorks, OSINT, Recon
The GHDB is an index of search queries (we call them dorks) used to find publicly available information, intended for pentesters and security researchers.
OpenSSH server (sshd) 9.8p1 - Race Condition - Linux remote Exploit
Apr 22, 2025 · * Exploit Title : OpenSSH server (sshd) 9.8p1 - Race Condition * Author : Milad Karimi (Ex3ptionaL) * Date : 2025-04-16 * * Description: * Targets a signal handler race condition in …
WordPress Core 6.2 - Directory Traversal - PHP webapps Exploit
Apr 22, 2025 · WordPress Core 6.2 - Directory Traversal. CVE-2023-2745 . webapps exploit for PHP platform
vsftpd 2.3.4 - Backdoor Command Execution - Unix remote Exploit
Apr 12, 2021 · vsftpd 2.3.4 - Backdoor Command Execution. CVE-2011-2523 . remote exploit for Unix platform
Exploit Database Papers
Archived security papers and articles in various languages.
Linux Kernel 3.13.0 < 3.19 (Ubuntu 12.04/14.04/14.10/15.04 ...
Jun 16, 2015 · Linux Kernel 3.13.0 < 3.19 (Ubuntu 12.04/14.04/14.10/15.04) - 'overlayfs' Local Privilege Escalation. CVE-2015-1328 . local exploit for Linux platform
Exploit Database Statistics
The following graphs and statistics provide you with a glimpse of the entries that have been added to the Exploit Database over the years. They will be re-generated, at minimum, on a monthly basis and will …
Roundcube 1.6.10 - Remote Code Execution (RCE) - Exploit Database
Jun 13, 2025 · Roundcube 1.6.10 - Remote Code Execution (RCE). CVE-2025-49113 . webapps exploit for Multiple platform