WordPress GPX Viewer 2.2.8 Arbitrary File Creation Exploit

import argparse import requests from requests.sessions import Session import time banner = """ ██████╗██╗ ██╗███████╗ ██████╗ ██████╗ ██████╗ ██╗ ██╗ ██╗ ██████╗ ██████╗ ██████╗ █████╗ ██╔════╝██║ ██║██╔════╝ ╚════██╗██╔═████╗╚════██╗██║ ██║ ███║██╔═████╗██╔════╝ ╚════██╗██╔══██╗ ██║ ██║...

WordPress Th Shop Mania Theme 1.4.9 Missing Authorization Exploit

import requests import argparse import re import time By Nxploit | Khaled alenazi, Function to check if the site is vulnerable def checkvulnerabilityurl: versionurl = f"url/wp-content/themes/th-shop-mania/readme.txt" try: response = requests.getversionurl, timeout=5 if response.statuscode == 200:...

WordPress NextMove Lite 2.17.0 Missing Authorization Exploit

import requests import argparse Exploit script for CVE-2024-25092 By Nxploit Khaled Alenazi. def loginsession, url, username, password, useragent: loginurl = url + '/wp-login.php' response = session.postloginurl, verify=False, data= 'log': username, 'pwd': password, 'rememberme': 'forever',...

Exploit for OS Command Injection in Magnussolution Magnusbilling

Magnus Billing System v7 Exploit This Python script automates...

RDK 5.3 Buffer Overflow

RDK version 5.3 suffers from a local buffer overflow vulnerability. Exploit Title: RDK v5.3 - Buffer Overflow DoS Discovered by: Ahmet Ümit BAYRAM Discovered Date: 17.04.2024 Vendor Homepage: http://www.shenturk.com Software Link: http://www.shenturk.com/downloads/rdk-5.3-setup.rar Tested Version...

VMware vCenter Server 8.0.2 Privilege Escalation

VMware vCenter Server version 8.0.2 proof of concept privilege escalation exploit that leverages a vulnerability from 2024. ============================================================================================================================================= | Title : VMware vCenter Server...

Exploit for Missing Authorization in Spicethemes Newscrunch

Newscrunch Exploit CVE-2025-1307 🚨 Overview This exploit...

Exploit for Type Confusion in Google Chrome

CVE-2022-4174CVE-2022-41742 PoC para CVE-2022-4174CVE-2022-4...

Exploit for Server-Side Request Forgery in Havocframework Havoc

bash python3 exploit.p...

Exploit for Path Traversal in Wso2 Api_Manager

Exploit CVE-2022-29464 Este repositorio contiene un script pa...

Exploit for Code Injection in Geosolutionsgroup Jai-Ext

Uso del script CVE-2022-24816 Requisitos previos 1. Clo...

Exploit for OS Command Injection in Paloaltonetworks Pan-Os

Palo Alto PAN-OS Exploit PoC - CVE-2024-0012 & CVE-2024-9474 T...

Exploit for Server-Side Request Forgery in Microsoft

SSRF Exploit Script This repository contains a script designe...

Exploit for Authentication Bypass Using an Alternate Path or Channel in Vivektamrakar Wp_Rest_Api_Fns

CVE-2024-49328-exploit 🌟 Description: This script exploits...

Exploit for Special Element Injection in Rocket.Chat

Rocket-Chat-3.12.1-PoC-CVE-2021-22911- 1. Go login page !...

Exploit for Uncontrolled Search Path Element in Needrestart_Project Needrestart

CVE-2024-48990 introdution This vulnerability takes advant...

Exploit for Command Injection in Materialsvirtuallab Pymatgen

!imagehttps://github.com/user-attac...

Exploit for Path Traversal in Jenkins

Exploitation of Vulnerability CVE-2024-23897 in Jenkins...

Exploit for Cross-site Scripting in Wondercms

CVE-2023-41425-WonderCMS-Authenticated-RCE Description Won...

Exploit for OS Command Injection in Zimbra Collaboration

CVE-2024-45519 CVE-2024-45519 is a high-risk vulnerability in...