Core Certified Exploits

Expert validated exploits for safe and effective pen tests

Exploit development can be an advanced penetration testing skill that takes time to master. Additionally, when on a job, pen testers often don’t have the resources to create a new exploit. Many resort to searching for and using pre-written exploits that have not been tested and must go through the timely effort of quality assurance testing in order to ensure they are secure and effective. 

Core Impact users can save time by finding all the up-to-date exploits they need in one place. We provide a robust library of exploits designed to enable pen testers to safely and efficiently conduct successful penetration tests. Whether written by our own internal team or by a third party like ExCraft, you can trust they have been thoroughly tested and validated by our experts.

Stay Informed of New Core Certified Exploits

Subscribe to receive regular email updates on new exploits available for Core Impact

 

Browse the Core Certified Exploit Library

We provide pen testers with real-time updates for a wide range of exploits for different platforms, operating systems, and applications. 

 

Search our continuously growing library to discover an exploit that will allow you to gain and retain access on the target host or application.

Title Description Date Added CVE Link Exploit Platform Exploit Type Product Name
Netgear DGN2200 DGND3700 Admin Password Disclosure Vulnerability This module exploits a Information Disclosure vulnerability in Netgear DGN2200 DGND3700 June 29, 2020 Windows Exploits / Remote IOT
D-Link DNS-325 ShareCenter Command Injection (reboot) OS command execution vulneralbility in the photocenter_mgr.cgi file in Dlink DNS-325 ShareCenter firmware versions up to 1.05B03 June 29, 2020 Exploits / Remote IOT
Aptina AR0130 960P 1.3MP Camera Remote Configuration Disclosure Aptina AR0130 960P 1.3MP Camera Remote Configuration Disclosure June 29, 2020 Exploits / Client Side IOT
Telesquare SKT LTE Router SDT-CS3B1 Reset Router Vulnerability Telesquare SKT LTE Router SDT-CS3B1 Remote Reboot vulnerability June 29, 2020 Exploits / Client Side IOT
OpenSCADA Password Hash Authorization OpenSCADA Password Hash Authorization June 29, 2020 Linux Exploits / Remote SCADA
D-Link DIR850L credential disclosure vulnerability This module exploits a Information Disclosure vulnerability in D-Link DIR850L June 29, 2020 Windows Exploits / Remote IOT
Honeywell IP-Camera HICC-1100PT Password Disclosure Vulnerability Honeywell IP-Camera (HICC-1100PT) allows to unauthenticated user disclose the username and password remotely. June 29, 2020 Exploits / Client Side IOT
Mozilla WebThings Authorized Remote Code Execution Mozilla WebThings 0.10.0 Remote Code Execution June 29, 2020 Exploits / Remote Code Execution IOT
Netlink GPON Router 1.0.11 Remote Code Execution (reboot) Netlink GPON Router 1.0.11 Remote Code Execution vulnerability June 29, 2020 Exploits / Client Side IOT
Freeproxy Internet Suite Remote Denial of Service Denial of service vulnerability present in the web server. Vulnerability is very simple to trigger by sending special crafted GET request June 29, 2020 Windows Denial of Service / Remote IOT
HiSilicon hi3520d and similar system Directory Traversal Vulnerability This module exploits a directory traversal vulnerability in HiSilicon hi3520d June 29, 2020 Windows Exploits / Remote IOT
Cisco Catalyst 2960 IOS 12.2(55)SE1 ROCEM Remote Code Execution This module exploits a buffer overflow and installs an agent into the target host. June 29, 2020 Windows Exploits / Remote IOT
CleverMic 1011S-12 IP Camera Info Disclosure CleverMic 1011S-12 IP Camera credential disclosure vulnerability June 29, 2020 Exploits / Client Side IOT
Easy Internet Sharing Proxy Server SEH Buffer Overflow This module exploits a buffer overflow and installs an agent into the target host. June 29, 2020 Windows Exploits / Remote IOT
Microsoft .NET Framework Elevation of Privilege Vulnerability Exploit An elevation of privilege vulnerability exists in .NET Framework which could allow an attacker to elevate their privilege level. June 23, 2020 Windows Exploits / Local Impact
Trident Z Lighting Control Driver Local Privilege Escalation Exploit The ene.sys driver in Trident Z Lighting Control before v1.00.17 allow local non-privileged users (including low-integrity level processes) to read and write to arbitrary physical memory locations, and consequently gain NT AUTHORITY\SYSTEM privileges. June 19, 2020 Windows Exploits / Local Impact
Advantech WebAccess SCADA DATACORE IOCTL 0x523e Buffer Overflow Exploit The specific flaw exists within DATACORE server. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of Administrator. June 18, 2020 Windows Exploits / Remote Impact
OpenAudit Remote Code Execution (CVE-2020-12078) An issue was discovered in Open-AudIT 3.3.1. There is shell metacharacter injection via attributes to an open-audit/configuration/ URI. An attacker can exploit this by adding an excluded IP address to the global discovery settings (internally called exclude_ip). This exclude_ip value is passed to the exec function in the discoveries_helper.php file (inside the all_ip_list function) without being filtered, which means that the attacker can provide a payload instead of a valid IP address. June 12, 2020 Windows, Linux Exploits / OS Command Injection / Known Vulnerabilities Impact
Artica Pandora FMS Events Remote OS Command Injection Exploit The target parameter in events.php in Pandora FMS 7.0NG 742, 743 and 744 allows remote authenticated users to execute arbitrary OS commands. June 10, 2020 Windows, Linux Exploits / OS Command Injection / Known Vulnerabilities Impact
Cisco AnyConnect Secure Mobility Client Uncontrolled Search Path Privilege Escalation Exploit A vulnerability in the installer component of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated local attacker to copy user-supplied files to system level directories with system level privileges. The vulnerability is due to the incorrect handling of directory paths. An attacker could exploit this vulnerability by creating a malicious file and copying the file to a system directory. An exploit could allow the attacker to copy malicious files to arbitrary locations with system level privileges. June 5, 2020 Windows Exploits / Local Impact
Eaton HMiSoft VU3 File Parsing Buffer Overflow Exploit The specific flaw exists within the parsing of wTextLen information within VU3 files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. June 4, 2020 Windows Exploits / Client Side Impact
ATI Technologies Driver atillk64 Kernel Arbitrary Read Write Local Privilege Escalation Exploit AMD ATI atillk64 allows low-privileged users to interact directly with physical memory by calling one of several driver routines that map physical memory into the virtual address space of the calling process. This could enable low-privileged users to achieve NT AUTHORITY\SYSTEM privileges via a DeviceIoControl call associated with MmMapIoSpace, IoAllocateMdl, MmBuildMdlForNonPagedPool, or MmMapLockedPages. June 2, 2020 Windows Exploits / Local Impact
SpiderControl SCADA 6.51.00 Denial Of Service Exploit SpiderControl SCADA Editor Exploit DoS May 29, 2020 Windows Denial of Service / Remote SCADA
JVSdicom Server Remote Denial Of Service Exploit RemoteThis exploit will leave the service unavailable. JVSdicom Server is an open source DICOM PACS server application that acts as a Storage Service SCP and as a Query/Retrieve Service SCP. The server is capable of accepting multiple associations simultaneously. The server administrators can configure it to contain several filesystem-based storage areas (with different AE Titles), as well as to limit access to these areas from a pre-defined AE network. Alternatively, the server features a public mode, which can be used to grant open access to the server. May 29, 2020 Windows Denial of Service / Remote MEDICAL
Cogent DataHub 9.0.x Denial of Service Remote Denial Of Service in Cogent DataHub 9.0.x May 29, 2020 Denial of Service / Remote SCADAPRO