Useful:

RSS channel for exploits codes   Search for vulnerability information   Forum for vulnerabilities and exploits

imheap.sgi	Example crafted SGI file crash ImageMagick
xmbex.php	Exploits XMB <= 1.9.6 Final basename() 'langfilenew' arbitrary local inclusion / remote commands xctn
notiflood.tar.gz	NotfiFlood - a Proof-of-Concept PocketPC MMS Composer flooder
ie_createobject.pm	Internet Explorer COM CreateObject Code Execution exploit (metasploit)
alsapbof.zip	Exploits Multiple buffer-overflows in AlsaPlayer 0.99.76

mptho.zip	Exploits OpenMPT <= 1.17.02.43 and SVN <= 157 stack and heap overflows
netapi_ms06_040.pm	Microsoft NetpIsRemote() MSO6-040 Overflow exploit (MetaSploit)
clamav_upx_heap.exe	Clam AntiVirus Win32-UPX Heap Overflow PoC
crash-nfs.tar.gz	This program will generate fatal ext3 panics on any linux NFS server unfortunate enough to have it pointed at it
sapid.pl	Exploits SAPID CMS remote File Inclusion Vulnerabilities
mtinkex.pl	mtink libXm local root exploit

phpsscanfex.php	Exploits php local buffer underflow
brush.pl	WMF PoC denial of service exploit
festahc.zip	Exploits Festalon 0.5.0-0.5.5 heap corruption
dconnx.zip	Exploits DConnect Daemon <= 0.7.0 and CVS 30 Jul 2006 multiple vulnerabilities
mybloggiex.php	MyBloggie <= 2.1.4 trackback.php multiple SQL injections vulnerability
sendcardex.php	Exploits SendCard <= 3.4.0 unauthorized administrative access / remote commands

firefoxex.html	Firefox <= 1.5.0.4 Javascript navigator Object Code Execution PoC
tpfexploit.html	TinyPHPForum 3.6 Admin Maker
ocpbof.zip	Exploits Open Cubic Player <= 2.6.0pre6 / 0.1.10_rc5 multiple vulnerabilities
atutorex.php	Exploits ATutor <= 1.5.3.1 'links' blind SQL injection / admin credentials disclosure
getpwnedmail-x86.pl	fetchmail x86 exploit - OSX 10.4.7
gotpwnedagainmail.sh	Previously undisclosed local fetchmail issue. This takes setgid=6

getpwnedmail-ppc.pl	fetchmail ppc exploit - OSX 10.4.7 8J135
gdidosex.pl	0-day crash poc gdiplus.dll
itts_sharedex2.c	Exploits Heartbeat < 2.0.6 Insecure Shared Memory - Local Denial of Service
trionPWN.pl	AIM Triton 1.0.4 (and more) Exploit
etomitex.php	Exploits Etomite CMS <= 0.6.1 'rfiles.php' remote command execution
sipx2.pl	Exploits remote buffer overflow in sipXtapi

lmmgt2ho.zip	Exploits libmikmod <= 3.2.2 and current CVS heap overflow with GT2 files
cheesebof.zip	Exploits Cheese Tracker <= 0.9.9 possible code execution
prdelka-vs-SUN-sysinfo.c	Exploits Solaris <= 10 sysinfo() kernel memory information leak
mswinmailslotex.c	Microsoft SRV.SYS Mailslot Ring0 Memory Corruption(MS06-035) Exploit
h00lyshit.c	Exploits Linux kernel /proc race conditions
sambaex.pl	Samba Internal Data Structures Denial of Service Vulnerability Exploit

loudblogex.php	Exploits LoudBlog <= 0.5 'id' SQL injection / admin credentials disclosure
CS-MARS_jboss-exploit.pl	Exploits Cisco/Protego CS-MARS < 4.2.1 remote command execution, system compromise via insecure JBoss installation
invisionex.pl	Invision Power Board v2.1 <= 2.1.6 sql injection exploit
boastMachineex.pl	boastMachine <= 3.1 SQL Injection Exploit
mybbsipsql.php	MyBulletinBoard (MyBB) <= 1.1.5 'CLIENT-IP' SQL injection / create new admin exploit
unzip_msoppPOC.c	MS Power Point Multiple Vulnerabilities - (mso.dll) POC

unzip_ppPOC.c	MS Power Point Multiple Vulnerabilities (powerpnt.exe)- POC
vir.pl	SQuery <= 4.5(libpath) Remote File Inclusion Exploit
eskolar.pl	Eskolar CMS 0.9.0.0 Blind SQL Injection Exploit and bypass admin logon vulnerability
BTFs_MSWorksSpreadsheet_PoCFiles.zip	MS Works multiple vulnerabilities PoCs
phpbbex.php	Exploits PhpBB 3 memberlist.php/'ip' argument SQL injection / admin credentials disclosure
phorumex.php	PHORUM 5 arbitrary local inclusion exploit

rs_prctl_kernel.c	Linux Kernel 2.6.x PRCTL Core Dump Handling - Local r00t Exploit ( BID 18874 / CVE-2006-2451 )
imaptools.tgz	Imap directory traversal file listing, retrieval and deletion tools
topoex.pl	EJ3 TOPO 2.2 Remote Code Execution Exploit
ottomanex.pl	Ottoman CMS <= 1.1.3 Remote File Inclusion Exploit
sipx.pl	Remote Buffer Overflow in sipXtapi PoC Exploit
mswex.pl	0-day Microsoft WORD Hlink Local Buffer Overflow Exploit

webminex.php	Webmin / Usermin Arbitrary File Disclosure Vulnerability
otto.pl	Ottoman CMS <= 1.1.3 Remote File Inclusion Exploit
papooex.php	Exploits PAPOO <= 3_RC3 SQL injection / admin credentials disclosure
pivotex.php	Pivot <= 1.30 RC2 privileges escalation / remote commands execution exploit
kailleraex.zip	Kaillera <= 0.86 possible code execution PoC
adplugbof.c	Exploits AdPlug library <= 2.0 and CVS <= 04 Jul 2006 multiple overflow

mico_bug.tgz	MICO crash PoC
msoex.c	Exploits Microsoft Word unchecked boundary condition vulnerability
hhctrl.html	Internet Explorer HTML Help ActiveX Control Memory Corruption PoC
imageserv.pl	imgsvr dos exploit
Nanika.xls	Excel 2000/XP/2003 Style 0day POC
sturgeonex.pl	SturGeoN Upload Remote Command Execution Exploit

newsex.pl	Exploits News <= 5.2 SQL Injection (cmd exec)
phpbbex17.pl	PhpBB Exploit: Most Used Languages Module Sql injection
phpbbex15.pl	PhpBB Exploit: User Class Mod Sql injection ( Level list)
phpbbex14.pl	PhpBB Exploit: All Topics Hack Sql injection
FailureToLaunch.pl	Apple OSX launchd unformatted syslog() vulnerability exploit
blogcmsex.php	BLOG:CMS <= 4.0.0k sql injection/admin credentials disclosure exploit

mailenabledos.pl	Mailenable SMTP DoS exploit
hlink_exploit.pl	"Microsoft Office Excel 2003" Hlink Stack/SEH Overflow Exploit
quake3ex.c	Quake 3 Engine Client CS_ITEM Remote Stack Overflow Exploit
sv_init.diff	Exploits Files and cvars overwriting in Quake 3 engine (patch to sv_init)
sv_client.diff	Exploits Files and cvars overwriting in Quake 3 engine (patch to sv_client)
bitchxex.c	BitchX (epic) =<1.1-final | do_hook() Boundary Check Error Remote DoS

jawsex.php	Exploits Jaws <= 0.6.2 'Search gadget' SQL injection / admin credentials disclosure
rras_ms06_025.pm	Exploits Microsoft RRAS MSO6-025 Stack Overflow (metasploit)
deluxebbex.pl	DeluxeBB <= 1.07 Create Admin Exploit
CLexploits.ctt.txt	Windows Live Messenger 8.0 ( Contact List *.ctt ) Heap Overflow PoC
yabbseex.php	yabbse exploit
upbex.php	Ultimate PHP Board <= 1.96 GOLD Multiple Vulnerabilities Exploit

winsploit.c	Exploits Winamp 5.21 - Midi Buffer Overflow in_midi.dll
msexcelex.c	Microsoft Excel Remote Code Execution Proof Of Concept
vubbex.pl	Exploits vuBB <= 0.2.1 [BFA] SQL Injection, XSS, CRLF Injection, Full Path Disclosure
maximusex.php	Exploits Schoolmax Maximus iCue and iParent XSS
excelsexywarez.pl	excel unicode overflow poc
mybibi.pl	Proof of concept: mybb 1.1.2 remote code execution

mamboex2.php	Mambo <= 4.6rc1 'Weblinks' blind SQL injection / admin credentials disclosure exploit
bitweaverex.php	bitweaver <= v1.3 'tmpImagePath' attachment mod_mime exploit
picozipex.pl	Exploits Pico Zip v. 4.01 Long Filename Buffer Overflow
blur6ex.php	Exploits blur6ex <= 0.3.462 'ID' blind SQL injection / admin credentials disclosure
exploit_deadlock.zip	Exploit for the NtClose DeadLock vulnerability (MS06-030). C source code.
exploit_ring0.zip	Exploit for the Mrxsmb.sys privilege escalation(MS06-030), which allows to execute ring0 shellcode. "Fast-Food" coding style, nasty but works. C source code.

winicmpdos.cmd	Windows 2000 NAT ICMP options DoS PoC
rcblogex2.pl	RCblog <= 1.03 Remote Command Execution Exploit
cesarftpex.py	CesarFtp 0.99g 0day Exploit
f_ms-0.5.c	MyServer 0.5 denial of service
GUESTEX-exec.pl	Exploits GUESTEX guestbook remote code execution

<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22