Web-Vulnerability-Scanner

Web Application Vulnerability Scanner Internship Task - 2...

Malicious code in beautifulsoup4-new (PyPI)

--- -= Per source details. Do not edit below this line.=-...

MAL-2025-41623 Malicious code in beautifulsoup-new (PyPI)

--- -= Per source details. Do not edit below this line.=-...

Malicious code in beautifulsoup-new (PyPI)

--- -= Per source details. Do not edit below this line.=-...

Exploit for Improper Input Validation in Jenkins

hackUtils It is a hack tool kit for pentest and web security research, which is based on BeautifulSoup bs4 module http://www.crummy.com/software/BeautifulSoup/bs4/. Usage: hackUtils.py options Options: -h, --help Show basic help message and exit -b keyword, --baidu=keyword Fetch URLs from Baidu...

Formula-Injection-in-CycloneDX-Sunshine

It is an offensive tool for CycloneDX. Exploit module/toolkit ta...

vulSystem

This repository appears to be a collection of tools and scripts for web scraping and data collection, likely used for research or analysis purposes. The tools are written in Python and utilize various libraries such as BeautifulSoup and requests. The repository contains several scripts, including...

changedetection 0.45.20 Remote Code Execution

Exploit Title: changedetection = 0.45.20 Remote Code Execution RCE Date: 5-26-2024 Exploit Author: Zach Crosman zcrosman Vendor Homepage: changedetection.io Software Link: https://github.com/dgtlmoon/changedetection.io Version: = 0.45.20 Tested on: Linux CVE : CVE-2024-32651 from pwn import impor...

Apache mod_proxy_cluster 1.2.6 - Stored XSS

import requests import argparse from bs4 import BeautifulSoup from urllib.parse import urlparse, parseqs, urlencode, urlunparse from requests.exceptions import RequestException class Colors: RED = '\03391m' GREEN = '\0331;49;92m' RESET = '\0330m' def getclustermanagerurlbaseurl, path:...

CE Phoenix v1.0.8.20 - Remote Code Execution

Exploit Title: CE Phoenix v1.0.8.20 - Remote Code Execution RCE Authenticated Date: 2023-11-25 Exploit Author: tmrswrr Category: Webapps Vendor Homepage: CE Phoenix Version: v1.0.8.20 Tested on: Softaculous Demo - CE Phoenix EXPLOIT : import requests from bs4 import BeautifulSoup import sys impor...

Enrollment System 1.0 SQL Injection

Exploit Title: Enrollment System v1.0 - SQL Injection Date: 27 December 2023 Exploit Author: Gnanaraj Mauviel @0xm3m Vendor: Obi08 Vendor Homepage: https://github.com/Obi08/EnrollmentSystem Software Link: https://github.com/Obi08/EnrollmentSystem Version: v1.0 Tested on: Mac OSX, XAMPP, Apache,...

Enrollment System v1.0 - SQL Injection

Exploit Title: Enrollment System v1.0 - SQL Injection Date: 27 December 2023 Exploit Author: Gnanaraj Mauviel @0xm3m Vendor: Obi08 Vendor Homepage: https://github.com/Obi08/EnrollmentSystem Software Link: https://github.com/Obi08/EnrollmentSystem Version: v1.0 Tested on: Mac OSX, XAMPP, Apache,...

CVE-2024-0243 Server-side Request Forgery In Recursive URL Loader

With the following crawler configuration: python from bs4 import BeautifulSoup as Soup url = "https://example.com" loader = RecursiveUrlLoader url=url, maxdepth=2, extractor=lambda x: Soupx, "html.parser".text docs = loader.load An attacker in control of the contents of https://example.com could...

Exploit for Missing Authorization in Zoneminder

Exploit - ZoneMinder CVE-2023-26035 There is a Unauthentica...

ABB FlowX v4.00 - Exposure of Sensitive Information

Exploit Title: ABB FlowX v4.00 - Exposure of Sensitive Information Date: 2023-03-31 Exploit Author: Paul Smith Vendor Homepage: https://new.abb.com/products/measurement-products/flow-computers/spirit-it-flow-x-series Version: ABB Flow-X all versions before V4.00 Tested on: Kali Linux CVE:...

Bludit < 3.13.1 Backup Plugin - Arbitrary File Download (Authenticated) Exploit

-- coding: utf-8 -- /usr/bin/env python Exploit Title: Bludit 3.13.1 Backup Plugin - Arbitrary File Download Authenticated Date: 2022-07-21 Exploit Author: Antonio Cuomo arkantolo Vendor Homepage: https://www.bludit.com Software Link: https://github.com/bludit/bludit Version: 3.13.1 Tested on:...

Thruk Monitoring Web Interface 3.06 - Path Traversal

Exploit Title: Thruk Monitoring Web Interface 3.06 - Path Traversal Date: 08-Jun-2023 Exploit Author: Galoget Latorre @galoget CVE: CVE-2023-34096 Galoget Latorre Vendor Homepage: https://thruk.org/ Software Link: https://github.com/sni/Thruk/archive/refs/tags/v3.06.zip Software Link + Exploit +...

Malicious code in pylint-beautifulsoup (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis c3646b7e949a863983491259c105cde8b1ff0229781276a5ea22360c75440c5e The OpenSSF Package Analysis project identified 'pylint-beautifulsoup' @ 3.12.3 pypi as malicious. It is considered malicious because: - The...

MAL-2023-1393 Malicious code in pylint-beautifulsoup (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis c3646b7e949a863983491259c105cde8b1ff0229781276a5ea22360c75440c5e The OpenSSF Package Analysis project identified 'pylint-beautifulsoup' @ 3.12.3 pypi as malicious. It is considered malicious because: - The...

Malicious code in beautifulsoup-numpy (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 199bccf9ed40ab3dcd67c494f1b1b52cd3fa78beed3bc25e851cb0f14db9b60b The OpenSSF Package Analysis project identified 'beautifulsoup-numpy' @ 10.13.10 pypi as malicious. It is considered malicious because: - The...