23 matches found
POC
POC RBKD-SEC: Team-based PoC for vulnerability verification...
Exploit for CVE-2025-68613
🚀 n8n Authenticated RCE PoC Pocsuite3 CVE ID: CVE-202...
Exploit for Improper Handling of Exceptional Conditions in Apache Struts
pocsuite3 Legal Disclaimer Usage of pocsuite3 for attacking targets without prior mutual consent is illegal. pocsuite3 is for security testing purposes only 法律免责声明 未经事先双方同意,使用 pocsuite3 攻击目标是非法的。 pocsuite3 仅用于安全测试目的 Overview pocsuite3 is an open-sourced remote vulnerability testing and...
pocsuite_poc_collect
It is an offensive tool for vulnerability exploitation. The repository appears to be a collection of proof-of-concept PoC exploits for various vulnerabilities, likely created using the Pocsuite framework. Not specified...
pocsuite_poc_collect
It is an offensive tool for collecting POCs using the Pocsuite framework. The repository appears to be a collection of proof-of-concept POC exploits gathered using the Pocsuite framework. The primary CVE ID is not explicitly mentioned, but the repository is likely a collection of various POCs. Th...
Pocsuite
This project is an open-sourced remote vulnerability testing and proof-of-concept development framework called Pocsuite. It is developed by the Knownsec 404 Team and supports Python 2.6+. The framework comes with a powerful proof-of-concept engine and many niche features for penetration testers a...
pocsuite3
This is a PoC exploit for CVE-2021-NNNN, an exploit module/toolkit targeting a vulnerability in a specific product/service or framework. The target product/service or framework is not explicitly stated, but based on the code and metadata, it appears to be a web application vulnerability. The...
pocsuite_poc_collect
It is an offensive tool for vulnerability exploitation...
vulscan
This is a Python-based web application for vulnerability scanning and management. The application is built using Django and has several features, including: 1. Vulnerability Scanning: The application can scan for vulnerabilities in web applications using a variety of plugins POCs. 2. Plugin...
Pocsuite
It is an offensive tool for vulnerability exploitation. The primary CVE ID is not explicitly stated in the provided context, but the tool is likely used for exploiting vulnerabilities in web applications. The target product/service or framework is not explicitly stated, but it is likely a web...
Pocsuite
This project is an open-sourced remote vulnerability testing and proof-of-concept development framework called Pocsuite, developed by the Knownsec Security Team. It comes with a powerful proof-of-concept engine and many niche features for penetration testers and security researchers. The framewor...
Pocsuite v2.0.8 - Remote Vulnerability Testing Framework Developed By The Knownsec Security Team
Pocsuite is an open-sourced remote vulnerability testing and proof-of-concept development framework developed by the Knownsec Security Team. It comes with a powerful proof-of-concept engine, many niche features for the ultimate penetration testers and security researchers. How to use Pocsuite wit...
Fuxi Scanner - Network Security Vulnerability Scanner
Fuxi Scanner is an open source network security vulnerability scanner, it comes with multiple functions. Vulnerability detection & management Authentication Tester IT asset discovery & management Port scanner Subdomain scanner Acunetix Scanner Integrate Acunetix API Installation Documentation Usa...
Pocsuite - Remote Vulnerability Testing Framework Developed By The Knownsec Security Team
Pocsuite is an open-sourced remote vulnerability testing and PoC development framework developed by the Knownsec Security Team. It serves as the cornerstone of the team. You can use Pocsuite to verify and exploit vulnerabilities or write PoC/Exp based on it. You can also integrate Pocsuite in you...
Remote Vulnerability Testing Framework: Pocsuite
Pocsuite is an open-sourced remote vulnerability testing and proof-of-concept development framework developed by the Knownsec Security Team. It comes with a powerful proof-of-concept engine, many niche features for the ultimate penetration testers and security researchers. Requirements Python 2.6...
深澜安全认证网络管理计费系统(Srun 3000) /srun3/srun/services/modules/login/controller/login_controller.php任意文件下载漏
0x01 漏洞框架 Srun3000深澜校园宽带客户端是深澜软件面向校园网推出的安全认证网络管理计费产品。 /srun3/srun/services/modules/login/controller/logincontroller.php存在任意文件下载漏洞。 影响厂商:深澜软件 官方主页:http://www.srun.com/ 深澜软件的Srun 3000 安全认证网络管理计费产品家族由Srun 3000 Gateway System和 Srun 3000 Radius System组成。获得众多用户好评的Srun 3000 Gateway 认证计费系统在...
ShopNum1 ProductListCategory.aspx文件BrandGuid参数SQL注入漏洞
0x01 框架介绍 ShopNum1网店系统是武汉群翔软件有限公司自主研发的基于 WEB 应用的 B/S 架构的B2C网上商店系统,主要面向中高端客户, 为企业和大中型网商打造优秀的电子商务平台,ShopNum1运行于微软公司的 .NET 平台,采用最新的 ASP.NET 3.5技术进行分层开发。拥有更强的安全性、稳定性、易用性。 官方主页:www.shopnum1.com 影响厂商:武汉群翔软件有限公司 0x02 漏洞利用 关键词:inurl:ProductListCategory.aspx BrandGuid参数过滤不严导致注入。 利用方式:...
天融信网络卫士安全审计系统 /policy/manager/policy_bak.xls 文件 信息泄露漏洞
0x01 框架概述 天融信网络卫士数据库审计系统TopAudit-DB V3(简称TA-DB)是由北京天融信公司自主研发的面向企业级用户的数据库信息审计系统,同时集成网络审计功能、日志审计功能和运维审计功能。TA-DB系统以旁路的方式部署在网络中,不影响网络的性能具有即时的网络数据采集能力、强大的审计分析功能以及智能的信息处理能力。 通过使用该系统,可以实现如下目标: 实现对单位业务系统核心数据库的操作过程进行审计 有效保护业务数据的完整性。可以对违规行为进行审计记录与报警 对用户的网络行为监控、网络传输内容进行审计 官方主页: www.topsec.com.cn 0x02 漏洞细节...
正方协同办公系统/zfoa/gwxxbviewhtml.do任意文件下载漏洞
0x01 系统介绍 正方协同办公系统的设计目标是帮助各部门快速构建起一个安全、可靠、易用的文档一体化办公环境,实现公文处理的自动化,同时作为内部通讯和信息共享的平台。 系统的特点如下: (1)简单易用:实现快速部署,轻松办公 符合日常办公习惯的界面和操作,通过简单的使用培训,使用人员即可了解系统中的相关办公设置,并可应用系统进行办公。 (2)灵活的自定义功能,满足个性与变化的需求 组织机构、表单格式、工作流程、访问权限、打印格式、统计等全面提供自定义,能够很好的满足各单位现在和未来的办公自动化需求。 (3)多层次的安全设计,为办公自动化提供保障...
RuvarRHM select_baseinfo.aspx bt_name参数SQL注入漏洞
0x01 框架介绍 uvarHRM人力资源管理系统,汇集了众多成功企业先进的人力资源管理理念、人力资源管理实践、人力资源信息化系统建设的宝贵经验,以先进的信息技术,实现对企业人力资源信息的高度集成化管理,是适合中国企业使用的人力资源管理解决方案,为现代企业的成长与发展提供了先进、科学、务实的人力资源管理模式。 RuvarHRM采用基于IE浏览器的 B/S 结构,以人员管理、考勤管理、薪资管理、招聘管理、培训管理、合同管理、社保福利、绩效考核、报表中心为核心功能模块,是企业领导、HR经理和员工全员参与的,可多层次管理的集团版eHR系统。 官方主页:http://www.ruvar.com/...