Exploit for Code Injection in Vmware Identity_Manager

VMware-CVE-2022-22954-Command-Injector Proof of Concept for e...

Exploit for Code Injection in Vmware Spring_Framework

spring4shell ⭐ a python implementation of CVE-2022-22965 that...

Exploit for Path Traversal in Apache Http_Server

This is a Python script that exploits a remote code execution R...

Exploit for Improper Initialization in Linux Linux_Kernel

PoC exploit for CVE-2022-0847, a kernel arbitrary file manipulat...

Exploit for Code Injection in Vmware Spring_Framework

CVE-2022-22965 Spring Framework/CVE-2022-22965https://vuln...

Exploit for Code Injection in Vmware Spring_Framework

Spring Core RCE/CVE-2022-22965 Impacted versions: Spring fr...

Exploit for Path Traversal in Apache Http_Server

CVE-2021-41773...

Exploit for Path Traversal in Apache Http_Server

CVE-2021-41773 Docker $ sudo docker build -t . $ sudo...

Exploit for Reliance on Cookies without Validation and Integrity Checking in Fantec Mwid25-Ds_Firmware

PoC exploit for CVE-2022-28113, an unauthenticated remote code e...

Exploit for Improper Authentication in Chachethq Cachet

CVE-2021-39165 This Python script allows to exploi...

Exploit for Improper Initialization in Linux Linux_Kernel

CVE-2022-0847-dirty-pipe-kernel-checker Python script to check...

Seowon SLR-120 Router - Remote Code Execution (Unauthenticated) Exploit

Exploit Title: Seowon SLR-120 Router - Remote Code Execution Unauthenticated Exploit Author: Aryan Chehreghani Vendor Homepage: http://www.seowonintech.co.kr Software Link: http://www.seowonintech.co.kr/en/product/detail.asp?num=126&bigkind=B05&middlekind=B0530 Version: All version Tested on:...

Exploit for Code Injection in Vmware Spring_Cloud_Gateway

CVE-2022-22947-Spring-Cloud-Gateway-SpelRCE Overview of CVE...

Exploit for Code Injection in Vmware Spring_Cloud_Gateway

-cve-2022-22947- cve-2022-22947 Spring Cloud Gateway Batc...

SMBSR - Lookup For Interesting Stuff In SMB Shares

Well, SMBSR is a python script which given a CIDR/IP/IPfile/HOSTNAMEs enumerates all the SMB services listening 445 among the targets and tries to authenticate against them; if the authentication succeed then all the folders and subfolders are visited recursively in order to find secrets in files...

in zikula/core

Description When sending test emails, you're able to spam a target email address with as many emails as an attacker wants to a victim's email address due to lack of rate limiting /mailer/config/test I've put together a simple Python script that exploits this and would allow you to send a custom...

phpKF CMS 3.00 Beta y6 - Remote Code Execution (Unauthenticated) Exploit

Exploit Title: phpKF CMS 3.00 Beta y6 - Remote Code Execution RCE Unauthenticated Exploit Author: Halit AKAYDIN hLtAkydn Vendor Homepage: https://www.phpkf.com/ Software Link: https://www.phpkf.com/indirme.php Version: 3.00 Category: Webapps Tested on: Linux/Windows phpKF-CMS; It is a very popula...

Exploit for Deserialization of Untrusted Data in Siemens 6Bk1602-0Aa12-0Tp0_Firmware

It is an offensive tool for Log4j RCE CVE-2021-44228 vulnerability scanning. The primary CVE ID is CVE-2021-44228. The target product/service is Apache Log4j. The vulnerability class/vector is RCE Remote Code Execution. The probable entry points are scripts/modules such as log4j-scan.py. Notable...

Exploit for Uncontrolled Resource Consumption in Siemens 6Bk1602-0Aa12-0Tp0_Firmware

POC for CVE-2021-44228 This python script was created while I...

Booked Scheduler 2.7.5 - Remote Command Execution Exploit

Exploit Title: Booked Scheduler 2.7.5 - Remote Command Execution RCE Authenticated Vulnerability founder: AkkuS Exploit Author: 0sunday Vendor Homepage: https://www.bookedscheduler.com/ Software Link: N/A Version: Booked Scheduler 2.7.5 Tester on: Kali 2021.2 CVE: CVE-2019-9581 !/usr/bin/python3...