Exploit Database

Exploit Description	Date
telnetd 2.7 Exploit, Buffer Overflow REMOTE Author: effbarro	2026/05/07
Ghost CMS 6.19.0 Exploit, SQLi WEBAPPS Author: Maksim Rogov	2026/05/07
LuaJIT 2.1.1774638290 Exploit, Arbitrary Code Execution WEBAPPS Author: Taurus Omar	2026/05/07
Bludit CMS 3.18.4 Exploit, RCE WEBAPPS Author: ahi	2026/05/07
NocoBase 2.0.27 Exploit, VM Sandbox Escape LOCAL Author: nurcangencbilken	2026/05/07
ThingsBoard IoT Platform 4.2.0 Exploit, Server-Side Request Forgery (SSRF) WEBAPPS Author: tamilmath	2026/05/07
Linux Kernel proc_readdir_de() 6.18-rc5 Exploit, Local Privilege Escalation LOCAL Author: viralyash2	2026/05/04
Linux nf_tables 6.19.3 Exploit, Local Privilege Escalation LOCAL Author: viralyash2	2026/05/04
Linksys E1200 2.0.04 Exploit, Authenticated Stack Buffer Overflow (RCE) HARDWARE Author: arret	2026/05/04
MindsDB 25.9.1.1 Exploit, Path Traversal WEBAPPS Author: hewhiteh4	2026/05/04
Windows 11 24H2 Exploit, Local Privilege Escalation LOCAL Author: 30250967	2026/05/04
Traccar GPS Tracking System 6.11.1 Exploit, Cross-Site WebSocket Hijacking (CSWSH) WEBAPPS Author: aza	2026/05/04
FUXA 1.2.8 Exploit, Authentication Bypass + RCE Exploit WEBAPPS Author: oshu	2026/04/30
Python-Multipart 0.0.22 Exploit, Path Traversal WEBAPPS Author: efersoncardoso.de	2026/04/30
Google Chrome 145.0.7632.75 Exploit, CSSFontFeatureValuesMap LOCAL Author: u11secur1t	2026/04/30
Windows 11 23H2 Exploit, Denial of Service (DoS) LOCAL Author: ryhardertry	2026/04/30
Repetier-Server 1.4.10 Exploit, Path Traversal WEBAPPS Author: anyame	2026/04/30
HUSTOJ Zip-Slip v26.01.24 Exploit, RCE WEBAPPS Author: Marshall Whittaker	2026/04/30
BusyBox 1.37.0 Exploit, Path Traversal WEBAPPS Author: Calil Khalil	2026/04/30
Windows 11 25H2 Exploit, Heap Overflow LOCAL Author: u11secur1t	2026/04/30
JUNG Smart Visu Server 1.1.1050 Exploit, Dos WEBAPPS Author: anyame	2026/04/30
SumatraPDF 3.5.2 Exploit, Remote Code Execution WEBAPPS Author: anyame	2026/04/30
NiceGUI 3.6.1 Exploit, Path Traversal WEBAPPS Author: anyame	2026/04/30
Frigate NVR 0.16.3 Exploit, Remote Code Execution WEBAPPS Author: duardo270	2026/04/30
Js2Py 0.74 Exploit, RCE WEBAPPS Author: lisunbu	2026/04/30
Camaleon CMS v2.9.0 Exploit, Path Traversal WEBAPPS Author: elampudisaksh	2026/04/30
Cybersecurity AI (CAI) Framework 0.5.10 Exploit, Command Injection WEBAPPS Author: anyame	2026/04/30
Erugo 0.2.14 Exploit, Remote Code Execution (RCE) WEBAPPS Author: bdulmoi	2026/04/30
deephas 1.0.7 Exploit, Prototype Pollution WEBAPPS Author: anyame	2026/04/30
SUSE Manager 4.3.15 Exploit, Code Execution WEBAPPS Author: jmaj9	2026/04/30
HAX CMS 24.x Exploit, Stored Cross-Site Scripting (XSS) WEBAPPS Author: anyame	2026/04/29
Craft CMS 5.6.16 Exploit, RCE WEBAPPS Author: anyame	2026/04/29
GNU InetUtils 2.6 Exploit, Telnetd Remote Privilege Escalation LOCAL Author: liguliye	2026/04/29
phpMyFAQ 4.0.16 Exploit, Improper Authorization WEBAPPS Author: ontac	2026/04/29
GeographicLib v2.5.1 Exploit, stack buffer overflow WEBAPPS Author: osari	2026/04/29
OpenWrt 23.05 Exploit, Authenticated Remote Code Execution (RCE) LOCAL Author: Ahmet Mersin	2026/04/29
OpenKM 6.3.12 Exploit, Multiple WEBAPPS Author: kuma	2026/04/29
GUnet OpenEclass E-learning platform < 4.2 Exploit, Remote Code Execution (RCE) WEBAPPS Author: nico007	2026/04/29
JuzaWeb CMS 3.4.2 Exploit, Authenticated Remote Code Execution WEBAPPS Author: ardordev0	2026/04/29
FacturaScripts 2025.43 Exploit, XSS WEBAPPS Author: vettrivel00	2026/04/29
Xibo CMS 4.3.0 Exploit, RCE via SSTI WEBAPPS Author: Cristian Branet	2026/04/29
Fedora Exploit, Local Privilege Escalation LOCAL Author: hri	2026/04/29
LangChain Core 1.2.4 Exploit, SSTI/RCE WEBAPPS Author: anyame	2026/04/29
Atlona ATOMERX21 Exploit, Authenticated Command Injection LOCAL Author: izzzio	2026/04/29
Throttlestop Kernel Driver Exploit, Kernel Out-of-Bounds Write Privilege Escalation LOCAL Author: Xavi Beltran	2026/04/22
WordPress Plugin 5.2.0 Exploit, Broken Access Control WEBAPPS Author: ydev.turin	2026/04/22
AVAST Antivirus 25.11 Exploit, Unquoted Service Path LOCAL Author: Milad Karimi (Ex3ptionaL)	2026/04/22
NetBT e-Fatura Exploit, Privilege Escalation LOCAL Author: eccop	2026/04/10
D-Link DIR-650IN Exploit, Authenticated Command Injection WEBAPPS Author: Sanjay Singh	2026/04/10
React Server 19.2.0 Exploit, Remote Code Execution WEBAPPS Author: anieljavanra	2026/04/09
RomM 4.4.0 Exploit, XSS_CSRF Chain WEBAPPS Author: mohammedhesham	2026/04/09
Jumbo Website Manager Exploit, Remote Code Execution WEBAPPS Author: Mirabbas Ağalarov	2026/04/09
ZSH 5.9 Exploit, RCE LOCAL Author: inanadilran	2026/04/09
FortiWeb 8.0.2 Exploit, Remote Code Execution WEBAPPS Author: Mohammed Idrees Banyamer	2026/04/08
7-Zip 24.00 Exploit, Directory Traversal LOCAL Author: Mohammed Idrees Banyamer	2026/04/08
xibocms 3.3.4 Exploit, RCE WEBAPPS Author: omplexusprad	2026/04/08
SQLite 3.50.1 Exploit, Heap Overflow LOCAL Author: Mohammed Idrees Banyamer	2026/04/08
Microsoft MMC MSC EvilTwin Exploit, Local Admin Creation LOCAL Author: Mohammed Idrees Banyamer	2026/04/08
Horilla v1.3 Exploit, RCE WEBAPPS Author: akle	2026/04/08
is-localhost-ip 2.0.0 Exploit, SSRF LOCAL Author: u11secur1t	2026/04/06
Fortinet FortiWeb v8.0.1 Exploit, Auth Bypass WEBAPPS Author: u11secur1t	2026/04/06
Windows Kernel Exploit, Elevation of Privilege LOCAL Author: E1 Coders	2026/04/06
Desktop Window Manager Core Library 10.0.10240.0 Exploit, Privilege Escalation LOCAL Author: u11secur1t	2026/04/06
ASP.net 8.0.10 Exploit, Bypass WEBAPPS Author: Mohammed Idrees Banyamer	2026/04/06
Grafana 11.6.0 Exploit, SSRF WEBAPPS Author: Beatriz Fresno Naumova	2026/04/06
Zhiyuan OA Exploit, arbitrary file upload leading WEBAPPS Author: Beatriz Fresno Naumova	2026/04/06
WBCE CMS 1.6.4 Exploit, Remote Code Execution WEBAPPS Author: e	2026/04/06
RiteCMS 3.1.0 Exploit, Authenticated Remote Code Execution WEBAPPS Author: e	2026/04/06
WordPress Madara Exploit, Local File Inclusion WEBAPPS Author: Beatriz Fresno Naumova	2026/04/06
WordPress Backup Migration 1.3.7 Exploit, Remote Command Execution WEBAPPS Author: angwenjin	2026/03/03
mailcow 2025-01a Exploit, Host Header Password Reset Poisoning WEBAPPS Author: lvare	2026/03/03
Easy File Sharing Web Server v7.2 Exploit, Buffer Overflow WEBAPPS Author: iog	2026/03/03
WeGIA 3.5.0 Exploit, SQL Injection WEBAPPS Author: nurdemi	2026/03/03
Boss Mini v1.4.0 Exploit, Local File Inclusion (LFI) WEBAPPS Author: ndersoncezar04	2026/03/03
motionEye 0.43.1b4 Exploit, RCE WEBAPPS Author: rabha	2026/02/11
Windows 10.0.17763.7009 Exploit, spoofing vulnerability REMOTE Author: eatrizf	2026/02/11
glibc 2.38 Exploit, Buffer Overflow LOCAL Author: Beatriz Fresno Naumova	2026/02/11
windows 10/11 Exploit, NTLM Hash Disclosure Spoofing REMOTE Author: eatrizf	2026/02/04
Redis 8.0.2 Exploit, RCE REMOTE Author: Beatriz Fresno Naumova	2026/02/04
OctoPrint 1.11.2 Exploit, File Upload WEBAPPS Author: rabha	2026/02/04
Ingress-NGINX Admission Controller v1.11.1 Exploit, FD Injection to RCE REMOTE Author: Beatriz Fresno Naumova	2026/02/04
aiohttp 3.9.1 Exploit, directory traversal PoC WEBAPPS Author: Beatriz Fresno Naumova	2026/02/04
FortiWeb Fabric Connector 7.6.x Exploit, SQL Injection to Remote Code Execution WEBAPPS Author: Milad Karimi (Ex3ptionaL)	2026/02/04
Docker Desktop 4.44.3 Exploit, Unauthenticated API Exposure LOCAL Author: prillefo	2026/02/04
Piranha CMS 12.0 Exploit, Stored XSS in Text Block WEBAPPS Author: erminalvenom	2026/02/02
RPi-Jukebox-RFID 2.8.0 Exploit, Stored Cross-Site Scripting (XSS) WEBAPPS Author: Beatriz Fresno Naumova	2026/02/02
D-Link DIR-825 Rev.B 2.10 Exploit, Stack Buffer Overflow (DoS) HARDWARE Author: Beatriz Fresno Naumova	2026/02/02
RPi-Jukebox-RFID 2.8.0 Exploit, Remote Command Execution WEBAPPS Author: Beatriz Fresno Naumova	2026/01/17
Siklu EtherHaul Series EH-8010 Exploit, Arbitrary File Upload WEBAPPS Author: emaja	2026/01/17
Siklu EtherHaul Series EH-8010 Exploit, Remote Command Execution WEBAPPS Author: emaja	2026/01/17
WordPress Quiz Maker 6.7.0.56 Exploit, SQL Injection WEBAPPS Author: Rahul Sreenivasan	2025/12/25
Chained Quiz 1.3.5 Exploit, Unauthenticated Insecure Direct Object Reference via Cookie WEBAPPS Author: xsabr	2025/12/25
FreeBSD rtsold 15.x Exploit, Remote Code Execution via DNSSL WEBAPPS Author: Lukas Johannes Möller	2025/12/25
Summar Employee Portal 3.98.0 Exploit, Authenticated SQL Injection WEBAPPS Author: Peter Gabaldon	2025/12/16
esm-dev 136 Exploit, Path Traversal WEBAPPS Author: Byte Reaper	2025/12/16
Pluck 4.7.7-dev2 Exploit, PHP Code Execution WEBAPPS Author: odeSecLa	2025/12/08
phpMyFAQ 2.9.8 Exploit, Cross-Site Request Forgery(CSRF) WEBAPPS Author: odeSecLa	2025/12/03
phpMyFAQ 2.9.8 Exploit, Cross-Site Request Forgery (CSRF) WEBAPPS Author: odeSecLa	2025/12/03
MaNGOSWebV4 4.0.6 Exploit, Reflected XSS WEBAPPS Author: odeSecLa	2025/12/03
Django 5.1.13 Exploit, SQL Injection WEBAPPS Author: Wafcontrol Security Team	2025/12/03

telnetd 2.7 Exploit, Buffer Overflow
REMOTE Author: effbarro

2026/05/07

Ghost CMS 6.19.0 Exploit, SQLi
WEBAPPS Author: Maksim Rogov

2026/05/07

LuaJIT 2.1.1774638290 Exploit, Arbitrary Code Execution
WEBAPPS Author: Taurus Omar

2026/05/07

Bludit CMS 3.18.4 Exploit, RCE
WEBAPPS Author: ahi

2026/05/07

NocoBase 2.0.27 Exploit, VM Sandbox Escape
LOCAL Author: nurcangencbilken

2026/05/07

ThingsBoard IoT Platform 4.2.0 Exploit, Server-Side Request Forgery (SSRF)
WEBAPPS Author: tamilmath

2026/05/07