The Exploit Database - Exploits, Shellcode, 0days, Remote Exploits, Local Exploits, Web Apps, Vulnerability Reports, Security Articles, Tutorials and more.

The Exploit Database is a CVE compliant archive of public exploits and corresponding vulnerable software, developed for use by penetration testers and vulnerability researchers.

Mar 8, 2022 · * * This exploit requires Linux 5.8 or later; the code path was made * reachable by commit f6dd975583bd ("pipe: merge * anon_pipe_buf*_ops"). The commit did not introduce …

The following graphs and statistics provide you with a glimpse of the entries that have been added to the Exploit Database over the years. They will be re-generated, at minimum, on a monthly …

Jun 15, 2025 · AirKeyboard iOS App 1.0.5 - Remote Input Injection. CVE-n/a . remote exploit for iOS platform

Apr 22, 2025 · * Exploit Title : OpenSSH server (sshd) 9.8p1 - Race Condition * Author : Milad Karimi (Ex3ptionaL) * Date : 2025-04-16 * * Description: * Targets a signal handler race …

Archived security papers and articles in various languages.

Jul 16, 2025 · NodeJS 24.x - Path Traversal. CVE-2025-27210 . remote exploit for NodeJS platform

You would get the response message: “The target appears to be vulnerable.” We already know that, but just to check again. Now to get the meterpreter shell on the target’s system, simply …

Feb 26, 2017 · Linux Kernel 4.4.0 (Ubuntu) - DCCP Double-Free Privilege Escalation. CVE-2017-6074 . local exploit for Linux platform