0day.today - Biggest Exploit Database in the World.

Select your language:

Things you should know about 0day.today:

We use one main domain: http://0day.today
Most of the materials is completely FREE
If you want to purchase the exploit / get V.I.P. access or pay for any other service,
you need to buy or earn GOLD

We accept currencies: [contact admin to find more]

We don't want you to use our site as a tool for hacking purposes, so any kind of action that could affect illegaly other users or websites that you don't have right to access will be banned and your account including your data will be destroyed.

Administration of this site uses the official contacts. Beware of impostors!

We DO NOT use Telegram or any messengers / social networks!
Please, beware of scammers!

I am registered user of 0day.today. I don't want to see this screen in future.

What to do first?

Read the [ agreement ]
Read the [ Submit ] rules
Visit the [ faq ] page
[ Register ] profile
Get [ GOLD ]
If you want to [ sell ]
If you want to [ buy ]
If you lost [ Account ]
Any questions [ admin@0day.today ]

Main links

You can contact us by

Mail:

mr.inj3ct0r@gmail.com

Facebook:

Inj3ct0rs

Twitter:

Inj3ct0r

Telegram:

We DO NOT use Telegram or any messengers / social networks!

[ authorization ] [ registration ] [ restore account ]

You can contact us by:

Mail:

mr.inj3ct0r@gmail.com

Facebook:

Inj3ct0rs

Twitter:

Inj3ct0r

Telegram:

We DO NOT use Telegram or any messengers / social networks!

How to buy exploit? Two ways to buy required exploit. Currency, that we accept.

Anonymous buying of exploits is the way to buy exploit without registration. You buy it directly and anonymous and get exploit on mail.
Another way to buy exploits is to became 0day.today user, get 0day.today Gold and buy required exploit in our database.

We accept Crypto Currencies: [contact admin to find more]

What is 0day.today Gold? How to buy Gold? How to earn Gold?

0day.today Gold is the currency of 0day.today project. It used for paying for the services, buying exploits, earning money, etc.
You can buy Gold: exchange money to Gold
You can earn Gold: selling exploits, helping with cracking hashes, etc.

We accept Crypto Currencies: [contact admin to find more]

How to sell exploits? Earning 0day.today Gold.

To sell exploits on 0day.today exploits database you need to be registered user. You can login or register
You need to found new unique vulnerability or 0day exploit. Create description, make approve video, screenshots, other useful information.
Publish it on our database site, wait for cheking it by 0day.today Administration. Then wait for customers and earn money!
You also can make it more popular with Highlight service.
After you earn the 0day.today Gold you can get it out from the system to payment ystem, that you use.

[ local exploits ]

Local exploits and vulnerabilities category

A "local exploit" requires prior access to the vulnerable system and usually increases the privileges of the person running the exploit past those granted by the system administrator. Exploits against client applications also exist, usually consisting of modified servers that send an exploit if accessed with client application.

-::DATE

-::DESCRIPTION

-::TYPE

-::HITS

-::RISK

-::GOLD

-::AUTHOR

06-01-2021

H2 Database 1.4.199 - JNI Code Execution Vulnerability

Comments:

java

8 669

Security Risk Critical

Related releases

Download

Verified by 0day Admin

free

You can open this exploit for free

1F98D

Exploits:

BusinessLevel:

06-01-2021

PaperStream IP (TWAIN) 1.42.0.5685 - Local Privilege Escalation

Comments:

windows

8 436

Security Risk High

Related releases

Download

CVE-2018-16156

Verified by 0day Admin

free

You can open this exploit for free

1F98D

Exploits:

BusinessLevel:

06-01-2021

WinAVR Version 20100110 - Insecure Folder Permissions Vulnerability

Comments:

windows

8 421

Security Risk High

Related releases

Download

Verified by 0day Admin

free

You can open this exploit for free

Mohammed Alshehri

Exploits:

BusinessLevel:

06-01-2021

IObit Uninstaller 10 Pro - Unquoted Service Path Vulnerability

Comments:

windows

8 426

Security Risk Medium

Related releases

Download

Verified by 0day Admin

free

You can open this exploit for free

Mayur Parmar

Exploits:

BusinessLevel:

06-01-2021

dirsearch 0.4.1 - CSV Injection Vulnerability

Comments:

python

9 550

Security Risk Medium

Related releases

Download

Verified by 0day Admin

free

You can open this exploit for free

Dolev Farhi

Exploits:

BusinessLevel:

[ web applications ]

Webapplication (webapps) exploits and vulnerabilities category

This category is full with vulnerabilities, which was found in web projects and web applications.

-::DATE

-::DESCRIPTION

-::TYPE

-::HITS

-::RISK

-::GOLD

-::AUTHOR

06-01-2021

Sonatype Nexus 3.21.1 - Remote Code Execution (Authenticated) Vulnerability

Comments:

java

1 604

Security Risk Critical

Related releases

Download

CVE-2020-10199

Verified by 0day Admin

free

You can open this exploit for free

1F98D

Exploits:

BusinessLevel:

06-01-2021

Gitea 1.7.5 - Remote Code Execution Exploit

Comments:

multiple

1 423

Security Risk Critical

Related releases

Download

CVE-2019-11229

Verified by 0day Admin

free

You can open this exploit for free

1F98D

Exploits:

BusinessLevel:

06-01-2021

Resumes Management and Job Application Website 1.0 - Multiple Stored XSS Vulnerabilities

Comments:

php

1 352

Security Risk High

Related releases

Download

Verified by 0day Admin

free

You can open this exploit for free

Arnav Tripathy

Exploits:

BusinessLevel:

06-01-2021

Resumes Management and Job Application Website 1.0 - RCE (Unauthenticated) Vulnerability

Comments:

php

1 372

Security Risk Critical

Related releases

Download

Verified by 0day Admin

free

You can open this exploit for free

Arnav Tripathy

Exploits:

BusinessLevel:

06-01-2021

Newgen Correspondence Management System (corms) eGov 12.0 - Insecure Direct Object Reference

Comments:

multiple

1 375

Security Risk Critical

Related releases

Download

CVE-2020-35737

Verified by 0day Admin

free

You can open this exploit for free

ALI AL SINAN

Exploits:

BusinessLevel:

06-01-2021

WordPress WP24 Domain Check 1.6.2 Plugin - (fieldnameDomain) Stored Cross Site Scripting Vulnerabili

Comments:

php

1 346

Security Risk High

Related releases

Download

Verified by 0day Admin

free

You can open this exploit for free

Mehmet Kelepçe

Exploits:

BusinessLevel:

06-01-2021

WordPress litespeed cache 3.6 Plugin - (server_ip) Cross-Site Scripting Vulnerability

Comments:

php

1 370

Security Risk Medium

Related releases

Download

Verified by 0day Admin

free

You can open this exploit for free

Nhat Ha

Exploits:

BusinessLevel:

06-01-2021

Responsive E-Learning System 1.0 - Stored Cross Site Scripting Vulnerability

Comments:

php

1 311

Security Risk High

Related releases

Download

Verified by 0day Admin

free

You can open this exploit for free

Kshitiz Raj

Exploits:

BusinessLevel:

06-01-2021

Responsive E-Learning System 1.0 - Unrestricted File Upload to Remote Code Execution Vulnerability

Comments:

php

1 315

Security Risk Critical

Related releases

Download

Verified by 0day Admin

free

You can open this exploit for free

Kshitiz Raj

Exploits:

BusinessLevel:

06-01-2021

Expense Tracker 1.0 - (Expense Name) Stored Cross-Site Scripting Vulnerability

Comments:

php

1 273

Security Risk High

Related releases

Download

Verified by 0day Admin

free

You can open this exploit for free

Shivam Verma

Exploits:

BusinessLevel:

We DO NOT use Telegram or any messengers / social networks!

Please, beware of scammers!

How to buy exploit? Two ways to buy required exploit. Currency, that we accept.

What is 0day.today Gold? How to buy Gold? How to earn Gold?

How to sell exploits? Earning 0day.today Gold.

[ local exploits ]

Local exploits and vulnerabilities category

H2 Database 1.4.199 - JNI Code Execution Vulnerability

PaperStream IP (TWAIN) 1.42.0.5685 - Local Privilege Escalation

WinAVR Version 20100110 - Insecure Folder Permissions Vulnerability

IObit Uninstaller 10 Pro - Unquoted Service Path Vulnerability

dirsearch 0.4.1 - CSV Injection Vulnerability

[ web applications ]

Webapplication (webapps) exploits and vulnerabilities category

Sonatype Nexus 3.21.1 - Remote Code Execution (Authenticated) Vulnerability

Gitea 1.7.5 - Remote Code Execution Exploit

Resumes Management and Job Application Website 1.0 - Multiple Stored XSS Vulnerabilities

Resumes Management and Job Application Website 1.0 - RCE (Unauthenticated) Vulnerability

Newgen Correspondence Management System (corms) eGov 12.0 - Insecure Direct Object Reference

WordPress WP24 Domain Check 1.6.2 Plugin - (fieldnameDomain) Stored Cross Site Scripting Vulnerabili

WordPress litespeed cache 3.6 Plugin - (server_ip) Cross-Site Scripting Vulnerability

Responsive E-Learning System 1.0 - Stored Cross Site Scripting Vulnerability

Responsive E-Learning System 1.0 - Unrestricted File Upload to Remote Code Execution Vulnerability

Expense Tracker 1.0 - (Expense Name) Stored Cross-Site Scripting Vulnerability

Report Error

Report Error