0day.today - Biggest Exploit Database in the World.
Things you should know about 0day.today:
Administration of this site uses the official contacts. Beware of impostors!
- We use one main domain: http://0day.today
- Most of the materials is completely FREE
- If you want to purchase the exploit / get V.I.P. access or pay for any other service,
you need to buy or earn GOLD
Administration of this site uses the official contacts. Beware of impostors!
We DO NOT use Telegram or any messengers / social networks!
Please, beware of scammers!
Please, beware of scammers!
- Read the [ agreement ]
- Read the [ Submit ] rules
- Visit the [ faq ] page
- [ Register ] profile
- Get [ GOLD ]
- If you want to [ sell ]
- If you want to [ buy ]
- If you lost [ Account ]
- Any questions [ admin@0day.today ]
- Authorisation page
- Registration page
- Restore account page
- FAQ page
- Contacts page
- Publishing rules
- Agreement page
Mail:
Facebook:
Twitter:
Telegram:
We DO NOT use Telegram or any messengers / social networks!
You can contact us by:
Mail:
Facebook:
Twitter:
Telegram:
We DO NOT use Telegram or any messengers / social networks!
The minimum length of a search query is 3 symbols
Search results for exploits with selected filters
[ remote exploits ]
Remote exploits and vulnerabilities category
A "remote exploit" works over a network and exploits the security vulnerability without any prior access to the vulnerable system.
-::DATE
-::DESCRIPTION
-::TYPE
-::HITS
-::RISK
-::GOLD
-::AUTHOR
Ray cpu_profile Command Injection Exploit
Comments:
0
1 209
Security Risk Critical
D
Download
C
CVE-2023-6019
Verified by 0day Admin
free
You can open this exploit for free
metasploit
Exploits:
1655
BusinessLevel:
94
DIAEnergie 1.10 SQL Injection Exploit
Comments:
0
1 528
Security Risk High
D
Download
C
CVE-2024-4548
Verified by 0day Admin
free
You can open this exploit for free
metasploit
Exploits:
1655
BusinessLevel:
94
1 007
Security Risk Critical
D
Download
C
CVE-2024-28254
CVE-2024-28255
CVE-2024-28255
Verified by 0day Admin
free
You can open this exploit for free
metasploit
Exploits:
1655
BusinessLevel:
94
1 109
Security Risk High
D
Download
C
CVE-2023-40504
Verified by 0day Admin
free
You can open this exploit for free
metasploit
Exploits:
1655
BusinessLevel:
94
Calibre 7.15.0 Python Code Injection Exploit
Comments:
0
1 352
Security Risk Critical
D
Download
C
CVE-2024-6782
Verified by 0day Admin
free
You can open this exploit for free
metasploit
Exploits:
1655
BusinessLevel:
94
1 364
Security Risk High
D
Download
C
CVE-2023-28384
Verified by 0day Admin
free
You can open this exploit for free
metasploit
Exploits:
1655
BusinessLevel:
94
2 414
Security Risk Critical
D
Download
C
CVE-2024-29824
Verified by 0day Admin
free
You can open this exploit for free
metasploit
Exploits:
1655
BusinessLevel:
94
3 114
Security Risk Critical
D
Download
-
Verified by 0day Admin
free
You can open this exploit for free
metasploit
Exploits:
1655
BusinessLevel:
94
3 040
Security Risk Critical
D
Download
C
CVE-2024-2389
Verified by 0day Admin
free
You can open this exploit for free
metasploit
Exploits:
1655
BusinessLevel:
94
Zope 5.9 Command Injection Vulnerability
Comments:
0
4 017
Security Risk High
D
Download
C
CVE-2024-33828
Verified by 0day Admin
free
You can open this exploit for free
Ilyase Dehy
Exploits:
1
BusinessLevel:
0
4 733
Security Risk Critical
D
Download
C
CVE-2024-1212
Verified by 0day Admin
free
You can open this exploit for free
metasploit
Exploits:
1655
BusinessLevel:
94
5 025
Security Risk Critical
D
Download
C
CVE-2023-48788
Verified by 0day Admin
free
You can open this exploit for free
metasploit
Exploits:
1655
BusinessLevel:
94
4 329
Security Risk High
D
Download
C
CVE-2024-3400
Verified by 0day Admin
free
You can open this exploit for free
Kr0ff
Exploits:
4
BusinessLevel:
3
7 077
Security Risk Critical
D
Download
C
CVE-2023-23333
Verified by 0day Admin
free
You can open this exploit for free
ByteHunter
Exploits:
5
BusinessLevel:
1
4 442
Security Risk Critical
D
Download
C
CVE-2023-42793
Verified by 0day Admin
free
You can open this exploit for free
ByteHunter
Exploits:
5
BusinessLevel:
1
TP-Link JetStream Smart Switch TL-SG2210P 5.0 Build 20211201 Privilege Escalation Vulnerability
Comments:
0
7 589
Security Risk Medium
D
Download
C
CVE-2023-43318
Verified by 0day Admin
free
You can open this exploit for free
Shahnawaz Shaikh
Exploits:
1
BusinessLevel:
0
BoidCMS 2.0.0 Command Injection Exploit
Comments:
0
4 674
Security Risk Critical
D
Download
C
CVE-2023-38836
Verified by 0day Admin
free
You can open this exploit for free
metasploit
Exploits:
1655
BusinessLevel:
94
Kafka UI 0.7.1 Command Injection Exploit
Comments:
0
5 028
Security Risk Critical
D
Download
C
CVE-2023-52251
Verified by 0day Admin
free
You can open this exploit for free
metasploit
Exploits:
1655
BusinessLevel:
94
KiTTY 0.76.1.13 Command Injection Exploit
Comments:
0
3 164
Security Risk High
D
Download
C
CVE-2024-23749
Verified by 0day Admin
free
You can open this exploit for free
DEFCESCO
Exploits:
4
BusinessLevel:
1
Atlassian Confluence SSTI Injection Exploit
Comments:
0
2 135
Security Risk High
D
Download
C
CVE-2023-22527
Verified by 0day Admin
free
You can open this exploit for free
metasploit
Exploits:
1655
BusinessLevel:
94
[ local exploits ]
Local exploits and vulnerabilities category
A "local exploit" requires prior access to the vulnerable system and usually increases the privileges of the person running the exploit past those granted by the system administrator. Exploits against client applications also exist, usually consisting of modified servers that send an exploit if accessed with client application.
-::DATE
-::DESCRIPTION
-::TYPE
-::HITS
-::RISK
-::GOLD
-::AUTHOR
KiTTY 0.76.1.13 - Command Injection Exploit
Comments:
0
6 361
Security Risk Critical
D
Download
C
CVE-2024-23749
Verified by 0day Admin
free
You can open this exploit for free
DEFCESCO
Exploits:
4
BusinessLevel:
1
2 737
Security Risk High
D
Download
-
Verified by 0day Admin
free
You can open this exploit for free
Ahmet Ümit BAYRAM
Exploits:
75
BusinessLevel:
7
2 272
Security Risk High
D
Download
-
Verified by 0day Admin
free
You can open this exploit for free
Ahmet Ümit BAYRAM
Exploits:
75
BusinessLevel:
7
3 888
Security Risk High
D
Download
C
CVE-2023-5347
CVE-2023-5376
CVE-2023-5376
Verified by 0day Admin
free
You can open this exploit for free
Tim Weber
Exploits:
29
BusinessLevel:
10
pdfkit v0.8.7.2 - Command Injection Exploit
Comments:
0
4 142
Security Risk Critical
D
Download
Verified by 0day Admin
free
You can open this exploit for free
UNICORD
Exploits:
3
BusinessLevel:
1
sleuthkit 4.11.1 - Command Injection Exploit
Comments:
0
4 097
Security Risk Critical
D
Download
C
CVE-2022-45639
Verified by 0day Admin
free
You can open this exploit for free
Dino Barlattani
Exploits:
5
BusinessLevel:
3
6 478
Security Risk High
D
Download
C
CVE-2022-1043
Verified by 0day Admin
free
You can open this exploit for free
metasploit
Exploits:
1655
BusinessLevel:
94
9 095
Security Risk Medium
D
Download
-
Verified by 0day Admin
free
You can open this exploit for free
Ali Alipour
Exploits:
8
BusinessLevel:
3
9 220
Security Risk Medium
D
Download
-
Verified by 0day Admin
free
You can open this exploit for free
Pedro Sousa Rodrigues
Exploits:
1
BusinessLevel:
2
ExifTool DjVu ANT Perl Injection Exploit
Comments:
0
18 508
Security Risk High
D
Download
C
CVE-2021-22204
Verified by 0day Admin
free
You can open this exploit for free
metasploit
Exploits:
1655
BusinessLevel:
94
8 446
Security Risk Critical
D
Download
C
CVE-2020-7384
Verified by 0day Admin
free
You can open this exploit for free
Justin Steven
Exploits:
1
BusinessLevel:
2
dnsrecon 0.10.0 - CSV Injection Vulnerability
Comments:
0
9 784
Security Risk Medium
D
Download
-
Verified by 0day Admin
free
You can open this exploit for free
Dolev Farhi
Exploits:
39
BusinessLevel:
7
dirsearch 0.4.1 - CSV Injection Vulnerability
Comments:
0
9 754
Security Risk Medium
D
Download
-
Verified by 0day Admin
free
You can open this exploit for free
Dolev Farhi
Exploits:
39
BusinessLevel:
7
Knockpy 4.1.1 - CSV Injection Exploit
Comments:
0
9 320
Security Risk High
D
Download
-
Verified by 0day Admin
free
You can open this exploit for free
Dolev Farhi
Exploits:
39
BusinessLevel:
7
Canon Inkjet Extended Survey Program 5.1.0.8 - (IJPLMSVC.EXE) - Unquoted Service Path Vulnerability
Comments:
0
8 526
Security Risk Medium
D
Download
-
Verified by 0day Admin
free
You can open this exploit for free
Carlos Roa
Exploits:
1
BusinessLevel:
2
21 109
Security Risk Medium
D
Download
C
CVE-2020-25203
Verified by 0day Admin
free
You can open this exploit for free
Julien Ahrens
Exploits:
66
BusinessLevel:
10
VB 6.0 Dirlist Object Code Execution Exploit
Comments:
0
7 867
Security Risk High
D
Download
-
Verified by 0day Admin
free
You can open this exploit for free
HexraiN
Exploits:
4
BusinessLevel:
2
10 268
Security Risk Critical
D
Download
C
CVE-2019-18909
Verified by 0day Admin
free
You can open this exploit for free
Eldar Marcussen
Exploits:
5
BusinessLevel:
5
10 010
Security Risk High
D
Download
C
CVE-2019-18910
Verified by 0day Admin
free
You can open this exploit for free
Eldar Marcussen
Exploits:
5
BusinessLevel:
5
8 148
Security Risk Medium
D
Download
-
Verified by 0day Admin
free
You can open this exploit for free
Roberto Piña
Exploits:
6
BusinessLevel:
3
[ web applications ]
Webapplication (webapps) exploits and vulnerabilities category
This category is full with vulnerabilities, which was found in web projects and web applications.
-::DATE
-::DESCRIPTION
-::TYPE
-::HITS
-::RISK
-::GOLD
-::AUTHOR
181
Security Risk Critical
D
Download
C
CVE-2024-8877
CVE-2024-8878
CVE-2024-8878
Verified by 0day Admin
free
You can open this exploit for free
Tim Weber
Exploits:
29
BusinessLevel:
10
WordPress LMS 4.2.7 SQL Injection Vulnerability
Comments:
0
207
Security Risk High
D
Download
C
CVE-2024-8522
Verified by 0day Admin
free
You can open this exploit for free
Avento
Exploits:
1
BusinessLevel:
0
VICIdial 2.14-917a SQL Injection Vulnerability
Comments:
0
895
Security Risk High
D
Download
C
CVE-2024-8503
Verified by 0day Admin
free
You can open this exploit for free
Jaggar Henry
Exploits:
8
BusinessLevel:
0
ASIS 3.2.0 SQL Injection Vulnerability
Comments:
0
870
Security Risk High
D
Download
C
CVE-2024-45622
Verified by 0day Admin
free
You can open this exploit for free
checkgue
Exploits:
1
BusinessLevel:
0
Journyx 11.5.4 XML Injection Vulnerability
Comments:
0
560
Security Risk Low
D
Download
C
CVE-2024-6893
Verified by 0day Admin
free
You can open this exploit for free
Jaggar Henry
Exploits:
8
BusinessLevel:
0
Dolphin 7.4.2 Blind SQL Injection Vulnerability
Comments:
0
1 351
Security Risk Medium
D
Download
-
Verified by 0day Admin
free
You can open this exploit for free
Andrey Stoykov
Exploits:
20
BusinessLevel:
4
1 323
Security Risk High
D
Download
-
Verified by 0day Admin
free
You can open this exploit for free
OoN_Boy
Exploits:
12
BusinessLevel:
8
ReadyMade Unilevel Ecommerce MLM Blind SQL Injection / Cross Site Scripting Vulnerabilities
Comments:
0
1 310
Security Risk High
D
Download
-
Verified by 0day Admin
free
You can open this exploit for free
OoN_Boy
Exploits:
12
BusinessLevel:
8
1 309
Security Risk High
D
Download
-
Verified by 0day Admin
free
You can open this exploit for free
OoN_Boy
Exploits:
12
BusinessLevel:
8
1 356
Security Risk High
D
Download
C
CVE-2024-6205
Verified by 0day Admin
free
You can open this exploit for free
j3r1ch0123
Exploits:
1
BusinessLevel:
0
1 534
Security Risk High
D
Download
-
Verified by 0day Admin
free
You can open this exploit for free
OoN_Boy
Exploits:
12
BusinessLevel:
8
906
Security Risk High
D
Download
C
CVE-2024-40502
Verified by 0day Admin
free
You can open this exploit for free
0xMykull
Exploits:
1
BusinessLevel:
0
WordPress Poll 2.3.6 SQL Injection Vulnerability
Comments:
0
2 413
Security Risk High
D
Download
-
Verified by 0day Admin
free
You can open this exploit for free
tmrswrr
Exploits:
59
BusinessLevel:
4
WordPress Video Gallery - YouTube Gallery And Vimeo Gallery 2.3.6 SQL Injection Vulnerability
Comments:
0
2 176
Security Risk High
D
Download
-
Verified by 0day Admin
free
You can open this exploit for free
tmrswrr
Exploits:
59
BusinessLevel:
4
2 042
Security Risk High
D
Download
-
Verified by 0day Admin
free
You can open this exploit for free
bRpsd
Exploits:
9
BusinessLevel:
5
1 991
Security Risk High
D
Download
-
Verified by 0day Admin
free
You can open this exploit for free
bRpsd
Exploits:
9
BusinessLevel:
5
1 601
Security Risk High
D
Download
-
Verified by 0day Admin
free
You can open this exploit for free
Sohel Yousef
Exploits:
11
BusinessLevel:
3
1 318
Security Risk High
D
Download
-
Verified by 0day Admin
free
You can open this exploit for free
Buğra Enis Dönmez
Exploits:
1
BusinessLevel:
0
1 565
Security Risk High
D
Download
C
CVE-2024-36840
Verified by 0day Admin
free
You can open this exploit for free
CBKB
Exploits:
1
BusinessLevel:
0
1 059
Security Risk High
D
Download
C
CVE-2024-36597
Verified by 0day Admin
free
You can open this exploit for free
Aslam Anwar Mahimkar
Exploits:
3
BusinessLevel:
0
[ dos / poc ]
DOS exploits and vulnerabilities category
PoC DoS (denial of service exploit) it exploits remote steps to check the resistance on the affected server or software denial of service vulnerability. The purpose of these attacks is to check the server or the software for resistance.
PoC (Proof Of Concept exploit) An attack against a computer or network that is performed only to prove that it can be done. It generally does not cause any harm, but shows how a hacker can take advantage of a vulnerability in the software or possibly the hardware.
-::DATE
-::DESCRIPTION
-::TYPE
-::HITS
-::RISK
-::GOLD
-::AUTHOR
iMessage - Decoding NSSharedKeyDictionary can read ObjC Object at Attacker Controlled Address
Comments:
0
16 013
Security Risk Medium
D
Download
C
CVE-2019-8662
CVE-2019-8641
CVE-2019-8641
Verified by 0day Admin
free
You can open this exploit for free
Google Security Research
Exploits:
1019
BusinessLevel:
56
16 167
Security Risk Medium
D
Download
-
Verified by 0day Admin
free
You can open this exploit for free
Google Security Research
Exploits:
1019
BusinessLevel:
56
JavaScriptCore - Type Confusion During Bailout when Reconstructing Arguments Objects Exploit
Comments:
0
16 109
Security Risk Medium
D
Download
C
CVE-2019-8820
Verified by 0day Admin
free
You can open this exploit for free
Google Security Research
Exploits:
1019
BusinessLevel:
56
14 939
Security Risk Medium
D
Download
C
CVE-2019-8641
Verified by 0day Admin
free
You can open this exploit for free
Google Security Research
Exploits:
1019
BusinessLevel:
56
12 527
Security Risk Medium
D
Download
C
CVE-2019-8646
Verified by 0day Admin
free
You can open this exploit for free
Google Security Research
Exploits:
1019
BusinessLevel:
56
macOS / iOS JavaScriptCore - Loop-Invariant Code Motion (LICM) Leaves Object Property Access Unguard
Comments:
0
12 555
Security Risk Medium
D
Download
Verified by 0day Admin
free
You can open this exploit for free
Google Security Research
Exploits:
1019
BusinessLevel:
56
macOS / iOS NSKeyedUnarchiver - Use-After-Free of ObjC Objects when Unarchiving OITSUIntDictionary I
Comments:
0
12 571
Security Risk Medium
D
Download
C
CVE-2019-8662
Verified by 0day Admin
free
You can open this exploit for free
Google Security Research
Exploits:
1019
BusinessLevel:
56
12 502
Security Risk Medium
D
Download
-
Verified by 0day Admin
free
You can open this exploit for free
Google Security Research
Exploits:
1019
BusinessLevel:
56
13 915
Security Risk Medium
D
Download
-
Verified by 0day Admin
free
You can open this exploit for free
Glazvunov
Exploits:
9
BusinessLevel:
3
Spidermonkey - IonMonkey Unexpected ObjectGroup in ObjectGroupDispatch Operation Exploit
Comments:
0
13 972
Security Risk Medium
D
Download
C
CVE-2019-9816
Verified by 0day Admin
free
You can open this exploit for free
saelo
Exploits:
9
BusinessLevel:
6
jetCast Server 2.0 - Denial of Service Exploit
Comments:
0
11 535
Security Risk Medium
D
Download
-
Verified by 0day Admin
free
You can open this exploit for free
Victor Mondragón
Exploits:
50
BusinessLevel:
6
12 052
Security Risk Medium
D
Download
-
Verified by 0day Admin
free
You can open this exploit for free
Alejandra Sánchez
Exploits:
36
BusinessLevel:
5
11 322
Security Risk Medium
D
Download
-
Verified by 0day Admin
free
You can open this exploit for free
Victor Mondragón
Exploits:
50
BusinessLevel:
6
Google Chrome 73.0.3683.39 / Chromium 74.0.3712.0 - ReadableStream Internal Object Leak Type Confusi
Comments:
0
11 680
Security Risk Medium
D
Download
-
Verified by 0day Admin
free
You can open this exploit for free
Google Security Research
Exploits:
1019
BusinessLevel:
56
11 796
Security Risk Medium
D
Download
C
CVE-2019-0612
Verified by 0day Admin
free
You can open this exploit for free
Google Security Research
Exploits:
1019
BusinessLevel:
56
7 410
Security Risk Medium
D
Download
C
CVE-2019-0567
CVE-2019-0539
CVE-2019-0539
Verified by 0day Admin
free
You can open this exploit for free
Google Security Research
Exploits:
1019
BusinessLevel:
56
Microsoft Edge Chakra - JsBuiltInEngineInterfaceExtensionObject::InjectJsBuiltInLibraryCode
Comments:
0
7 336
Security Risk Medium
D
Download
C
CVE-2019-0568
Verified by 0day Admin
free
You can open this exploit for free
Google Security Research
Exploits:
1019
BusinessLevel:
56
3 569
Security Risk Medium
D
Download
C
CVE-2018-4438
Verified by 0day Admin
free
You can open this exploit for free
Google Security Research
Exploits:
1019
BusinessLevel:
56
3 712
Security Risk Medium
D
Download
C
CVE-2018-8474
Verified by 0day Admin
free
You can open this exploit for free
nyxgeek
Exploits:
2
BusinessLevel:
4
Evince 3.24.0 - Command Injection Exploit
Comments:
0
3 689
Security Risk High
D
Download
C
CVE-2017-10000
Verified by 0day Admin
free
You can open this exploit for free
Matlink
Exploits:
1
BusinessLevel:
3
[ shellcode ]
Shellcode category
In computer security, a shellcode is a small piece of code used as the payload in the exploitation of a software vulnerability. It is called "shellcode" because it typically starts a command shell from which the attacker can control the compromised machine, but any piece of code that performs a similar task can be called shellcode. Because the function of a payload is not limited to merely spawning a shell, some have suggested that the name shellcode is insufficient. Shellcode is commonly written in machine code.
Classification:
There are several methods of classifying exploits. The most common is by how the exploit contacts the vulnerable software. A remote exploit works over a network and exploits the security vulnerability without any prior access to the vulnerable system. A local exploit requires prior access to the vulnerable system and usually increases the privileges of the person running the exploit past those granted by the system administrator. Exploits against client applications also exist, usually consisting of modified servers that send an exploit if accessed with a client application. Exploits against client applications may also require some interaction with the user and thus may be used in combination with the social engineering method. Another classification is by the action against the vulnerable system; unauthorized data access, arbitrary code execution, and denial of service are examples. Many exploits are designed to provide superuser-level access to a computer system. However, it is also possible to use several exploits, first to gain low-level access, then to escalate privileges repeatedly until one reaches root. Normally a single exploit can only take advantage of a specific software vulnerability. Often, when an exploit is published, the vulnerability is fixed through a patch and the exploit becomes obsolete until newer versions of the software become available Shellcodes any types.
-::DATE
-::DESCRIPTION
-::TYPE
-::HITS
-::RISK
-::GOLD
-::AUTHOR
11 737
Security Risk Medium
D
Download
-
Verified by 0day Admin
free
You can open this exploit for free
Bobby Cooke
Exploits:
26
BusinessLevel:
4
15 640
Security Risk High
D
Download
-
Verified by 0day Admin
free
You can open this exploit for free
Roziul Hasan Khan Shifat
Exploits:
26
BusinessLevel:
5
linux/x86 Search (*.php) and Inject PHP_BACKD00R
Comments:
0
13 851
Security Risk Unsored
D
Download
-
Not verified yet
free
You can open this exploit for free
KedAns-Dz
Exploits:
292
BusinessLevel:
25
4 516
Security Risk Unsored
D
Download
-
Not verified yet
free
You can open this exploit for free
gunslinger_
Exploits:
53
BusinessLevel:
10
linux/x86 cdrom ejecting shellcode 46 bytes
Comments:
0
5 147
Security Risk Unsored
D
Download
-
Not verified yet
free
You can open this exploit for free
gunslinger_
Exploits:
53
BusinessLevel:
10
linux/x86 eject /dev/cdrom 42 bytes
Comments:
0
3 722
Security Risk Unsored
D
Download
-
Not verified yet
free
You can open this exploit for free
thegibson
Exploits:
6
BusinessLevel:
8
3 596
Security Risk Unsored
D
Download
-
Not verified yet
free
You can open this exploit for free
izik
Exploits:
25
BusinessLevel:
11
3 511
Security Risk Unsored
D
Download
-
Not verified yet
free
You can open this exploit for free
izik
Exploits:
25
BusinessLevel:
11
linux/x86 eject /dev/cdrom 64 bytes
Comments:
0
3 380
Security Risk Unsored
D
Download
-
Not verified yet
free
You can open this exploit for free
lamagra
Exploits:
3
BusinessLevel:
10