45 matches found
VulnHive-AI
Pentest Agent AI-powered penetration testing agent using Clau...
Exploit for Deserialization of Untrusted Data in Apache Activemq
Security Engineer — Test Task A self-contained Docker environ...
rami-kali-MCP
Red Team MCP Server MCP Model Context Protocol server that...
Exploit for Deserialization of Untrusted Data in Facebook React
This Proof of Concept PoC for React2Shell CVE-2025-55182 vul...
GHSA-6R62-W2Q3-48HF BentoML has a Path Traversal via Bentofile Configuration
Summary BentoML's bentofile.yaml configuration allows path traversal attacks through multiple file path fields description, docker.setupscript, docker.dockerfiletemplate, conda.environmentyml. An attacker can craft a malicious bentofile that, when built by a victim, exfiltrates arbitrary files fr...
BentoML has a Path Traversal via Bentofile Configuration
Summary BentoML's bentofile.yaml configuration allows path traversal attacks through multiple file path fields description, docker.setupscript, docker.dockerfiletemplate, conda.environmentyml. An attacker can craft a malicious bentofile that, when built by a victim, exfiltrates arbitrary files fr...
Directory Traversal
Overview bentoml is a BentoML: Build Production-Grade AI Applications Affected versions of this package are vulnerable to Directory Traversal via the processing of user-supplied file paths in configuration fields description, docker.setupscript, docker.dockerfiletemplate, and conda.environmentyml...
Exploit for Deserialization of Untrusted Data in Apache Tomcat
CVE-2025-24813 Apache Tomcat RCE Exploit PoC This repository...
Exploit for CVE-2024-38819
CVE-2024-38819: Proof of Concept PoC This is a proof of con...
Exploit for CVE-2025-2011
CVE-2025-2011 - Depicter Plugin SQL Injection Vulnerability...
YesWiki Remote Code Execution via Arbitrary PHP File Write and Execution
Summary An arbitrary file write can be used to write a file with a PHP extension, which then can be browsed to in order to execute arbitrary code on the server. All testing was performed on a local docker setup running the latest version of the application. PoC Proof of Concept Navigate to...
Exploit for Deserialization of Untrusted Data in Apache Tomcat
CVE-2025-24813 Proof of Concept PoC script for CVE-2025-2481...
Exploit for CVE-2025-32965
This is a PoC exploit for CVE-2025-32965, a supply chain attack...
Exploit for Missing Authentication for Critical Function in Erlang Erlang\/Otp
CVE-2025-32433 Remote Shell Go-based exploit for CVE-2025-3243...
Exploit for CVE-2025-1094
Analysis of CVE-2025-1094 and Emulation Setup This detailed e...
Exploit for Incorrect Conversion between Numeric Types in Apache Xalan-Java
CVE-2022-34169 PoC A malleable PoC and solution for the SU...
Exploit for Race Condition in Openbsd Openssh
Summary This is essentially a statistical vulnerability: a la...
Exploit for Cross-site Scripting in Melapress Wp_Activity_Log
CVE-2024-10793 PoC Set this lines to your hosts file:...
Exploit for Incorrect Authorization in Buddypress
사용법 1. docker를 build하여 취약한 wordpress, buddypress 환경을 구성한다...
Exploit for CVE-2024-4439
CVE-2024-4439 CVE-2024-4439: Docker and POC Lab Setting...