274428 matches found
📄 XWiki 16.4.0 Remote Code Execution
Proof of concept exploit for a critical template injection vulnerability in XWiki Platform that allows unauthenticated remote code execution. The vulnerability affects XWiki versions 5.3-milestone-2 to 15.10.10 and 16.0.0-rc-1 to 16.4.0, potentially impacting thousands of enterprise wiki...
📄 Xiongmai XM530 ONVIF / RTSP Security Scanner
This project is a unified PHP-based security scanner designed to identify critical vulnerabilities in IP cameras, with a primary focus on ONVIF authentication bypass CVE-2025-65856 and unauthenticated RTSP stream exposure. The tool provides a single-file web interface that allows scanning a singl...
📄 WordPress SureTriggers 1.0.78 Authentication Bypass
WordPress SureTriggers plugin versions 1.0.78 and below expose an unauthenticated REST endpoint that allows construction of a user creation payload. This proof of concept demonstrates structure and logic only. No admin account is created, no plugin uploaded...
📄 WordPress TNC Toolbox 1.4.2 Information Disclosure
WordPress TNC Toolbox plugin versions 1.4.2 and below sensitive information disclosure proof of concept exploit. ============================================================================================================================================= | Title : WordPress TNC Toolbox = 1.4.2...
📄 MikroTik RouterOS WinBox 3.41 Username Enumeration
Proof of concept exploit for MikroTik RouterOS WinBox version 3.41 that demonstrates a username enumeration vulnerability. ============================================================================================================================================= | Title : MikroTik RouterOS WinB...
📄 WordPress WP Rocket 2.10.3 LFI Vulnerability Scanner
WordPress WP Rocket plugin versions prior to 2.10.4 local file inclusion vulnerability scanning tool. ============================================================================================================================================= | Title : WordPress WP Rocket 2.10.3 LFI Vulnerabilit...
📄 WordPress Wux Blog Editor 3.0.0 Vulnerability Scanner
This Metasploit auxiliary module scans WordPress sites for the External Post Editor plugin and checks for the unauthenticated file upload vulnerability that exists in version 3.0.0...
📄 WordPress WOOCOMMERCE Designer Pro 1.9.26 Shell Upload
WordPress WOOCOMMERCE Designer Pro plugin version 1.9.26 proof of concept remote shell upload exploit. ============================================================================================================================================= | Title : WordPress WOOCOMMERCE Designer Pro 1.9.26...
📄 WordPress Tatsu 3.3.11 Shell Upload
WordPress Tatsu plugin version 3.3.11 proof of concept unauthenticated remote shell upload exploit. ============================================================================================================================================= | Title : WordPress Tatsu 3.3.11 Plugin Unauthenticated...
syncbreeze-poc
includes notes and POC's for buffe...
diskpulse-poc
diskpulse-poc Exploit for OSED prep on DiskPulse Enter...
Exploit for Deserialization of Untrusted Data in Snakeyaml_Project Snakeyaml
yaml-payload Exploit payload JAR for demonstrating CVE-2022-...
Exploit for SQL Injection in Ays-Pro Quiz_Maker
WordPress-Quiz-Maker-SQLi-Exploit-CVE-2025-10042- This Python...
Exploit for CVE-2026-25643
CVE-2026-25643: Frigate NVR = 0.16.3 Authenticated RCE Ex...
SQLi_XSS_webpage
No d...
Exploit for Expression Language Injection in Siemens 6Bk1602-0Aa12-0Tp0_Firmware
No d...
Ethical-Hacking-Tools-Level2
🛡️ Cybersecurity & Python Portfolio - Level 2 Author: Pa...
Exploit for Path Traversal in Fortinet Fortiproxy
CVE-2018-...
Exploit for CVE-2025-2304
Exploit-for-CVE-2025-2304 usage: exploit.py -h --url URL --...
Exploit for Unrestricted Upload of File with Dangerous Type in Hashthemes Hash_Form
No d...