CoreExploit-Final

CoreExploit 🔐 Ethical Penetration Testing Learning Platfor...

Exploit for CVE-2018-19320

KernelMode - Advanced Windows Kernel Exploitation Toolkit...

Exploit for CVE-2025-68613

n8n Authenticated Expression Injection RCE – CVE-2025-68613...

Exploit for Improper Neutralization of Null Byte or NUL Character in Wftpserver Wing_Ftp_Server

CVE-2025-47812-poC Simple exploit for Wing FTP Server RCE CVE...

Exploit for Code Injection in Squirrelly

CVE-2024-40453 - Squirrelly v9.0.0 RCE Disclaimer: This sc...

Exploit for Deserialization of Untrusted Data in Apache Tomcat

JSP Web Shell Uploader A simple Python tool for uploading a basi...

Exploit for Deserialization of Untrusted Data in Apache Tomcat

CVE-2025-24813POC CVE-2025-24813P...

vulhub_v2

It is an offensive tool for web application security training. The repository contains a collection of vulnerable Docker environments for web application security training. The tool is designed to be easy to use, requiring only two simple commands to set up a vulnerable environment. The tool is n...

Exploit for Incorrect Default Permissions in Ui Unifi_Controller

This is a PoC exploit for CVE-2020-12695, a vulnerability in the CallStranger protocol. The script is designed to check against this vulnerability and demonstrate its exploitation. The vulnerability allows an attacker to bypass DLP Data Loss Prevention and exfiltrate data, use millions of...

Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Microsoft

This repository is an exploit module for CVE-2020-0796, a Windows SMBv3 LPE Local Privilege Escalation vulnerability. The exploit is written in C++ and utilizes the Windows API to achieve privilege escalation. The exploit targets the SMBv3 server on a Windows system and exploits a vulnerability i...

Brother MFC-J6520DW - Authentication Bypass Password Change

Brother MFC-J6520DW - Authentication Bypass Password Change ASCII hex -- md5 e.g. AuthCookie=c243a9ee18a9327bfd419f31e75e71c7 for 'test' password This information can be used to crack current password from exported cookie. Fix: Minimize network access to Brother MFC device or disable HTTPS...

Serv-U Web Client 9.0.0.5 - Remote Buffer Overflow (2)

Serv-U Web Client 9.0.0.5 - Remote Buffer Overflow 2 / !!!FOR EDUCATIONAL USE ONLY!!! M.Yanagishita Nov 2, 2009 !!!FOR EDUCATIONAL USE ONLY!!! / include include pragma commentlib, "ws232" define Diea ifareturn; char request = "POST / HTTP/1.1\r\nHost: %s\r\nCookie: killmenothing; SULang=de%%2CDE;...

XBMC 8.10 (Windows) - GET Remote Buffer Overflow

!/usr/bin/env python ''' Xbmc get request remote buffer overflow 8.10 !!! Tested:Win xp sp2 eng Vendor url:http://xbmc.org/ Release date:April the 1st 2009 versions affected: Linux windows tested other versions are also possibly affected. Restrictions:Bad chars need to be filtered. This exploit...

Racer 0.5.3 Beta 5 - Remote Buffer Overflow

Racer 0.5.3 Beta 5 - Remote Buffer Overflow !/usr/bin/perl Credit's to n00b. Racer v0.5.3 beta 5 12-03-07 remote exploit. Racer is also prone to a buffer over flow in the server and client.Automatically the game open's Udp port 26000 and is waiting for a msg buffer. If we send an overly long buff...

Clansys 1.1 (showid) - SQL Injection

Internet Security | |---==============================================================---| title: clansys 1.1 remote sql injection release: 2006-04-10 author: snatcher snatcher at gmx.ch country: switzerland |+| application: clansys 1.1 description: a php / mysql based clan content management...

wu-ftpd 2.6.2 Remote Denial Of Service Exploit (wuftpd-freezer.c)

Exploit for linux platform in category dos / poc ================================================================= wu-ftpd 2.6.2 Remote Denial Of Service Exploit wuftpd-freezer.c ================================================================= / c Rosiello Security Copyright Rosiello Security 20...