Exploit for CVE-2024-51788

💀 CVE-2024-51788 - WordPress The Novel Design Store Directory...

CVE

It is an offensive tool for Linux. This repository contains a pr...

Exploit for Cross-site Scripting in Roundcube Webmail

XSS Exploit for Roundcube Webmail 1.6.7 CVE-2024-42009 D...

Exploit for Time-of-check Time-of-use (TOCTOU) Race Condition in Apache Tomcat

CVE-2024-50379-Exploit This repository provides a Python scri...

Exploit for Heap-based Buffer Overflow in Microsoft

Exploit-PoC-para-CVE-2024-30085 Exploit en Python diseñado par...

Exploit for Command Injection in Materialsvirtuallab Pymatgen

!imagehttps://github.com/user-attac...

Exploit for CVE-2024-42640

CVE-2024-42640 Unauthenticated Remote Code Execution via Angul...

SmartAgent 1.1.0 Remote Code Execution

Exploit Title: SmartAgent v1.1.0 - Unauthenticated Remote Code Execution Date: 01-10-2024 Exploit Author: Alter Prime Vendor Homepage: https://smarts-srlcom.com/, https://smartagent.com Version: Build v1.1.0 Tested on: Kali Linux An unauthenticated user can access a php script called...

Exploit for Code Injection in Getgrav Grav

EN GenGravSSTIExploit is a PoC Python script that exploits...

Exploit for Improper Validation of Specified Type of Input in Servicenow

Jelly Template Injection Vulnerability in ServiceNow | POC CVE...

Exploit for CVE-2024-4956

CVE-2024-4956 All information is provided for informational...

Exploit for Unrestricted Upload of File with Dangerous Type in Hashthemes Hash_Form

Wordpress Hash Form – Drag & Drop Form Builder = 1.1.0 - Unau...

BMC Compuware iStrobe Web - 20.13 - Pre-auth Remote Code Execution Exploit

!/usr/bin/env python3 Exploit Title: Pre-auth RCE on Compuware iStrobe Web Date: 01-08-2023 Exploit Author: trancap Vendor Homepage: https://www.bmc.com/ Version: BMC Compuware iStrobe Web - 20.13 Tested on: zOS CVE : CVE-2023-40304 To exploit this vulnerability you'll need "Guest access" enabled...

Asterisk AMI 18.20.0 File Content / Path Disclosure

Exploit Title: Asterisk AMI - Partial File Content & Path Disclosure Authenticated Date: 2023-03-26 Exploit Author: Sean Pesce Vendor Homepage: https://asterisk.org/ Software Link: https://downloads.asterisk.org/pub/telephony/asterisk/old-releases/ Version: 18.20.0 Tested on: Debian Linux CVE:...

Exploit for Improper Input Validation in Microsoft

CVE-2023-23397-PoW Proof of Work of CVE-2023-23397 for vulnera...

OSGi v3.7.2 (and below) Console - RCE

!/usr/bin/python Exploit Title: OSGi v3.7.2 Console RCE Date: 2023-07-28 Exploit Author: Andrzej Olchawa, Milenko Starcik, VisionSpace Technologies GmbH Exploit Repository: https://github.com/visionspacetec/offsec-osgi-exploits.git Vendor Homepage: https://eclipse.dev/equinox Software Link:...

Exploit for CVE-2024-27697

FuguHub 8.4 Authenticated RCE Fuguhub is a Cloud Media Serve...

Jenkins 2.441 / LTS 2.426.3 Arbitrary File Read

python poc.py usage: python poc.py http://127.0.0.1:8888/ /etc/passwd import threading import http.client import time import uuid import urllib.parse import sys if lensys.argv != 3: print' usage: python poc.py http://127.0.0.1:8888/ /etc/passwd' exit databytes =...

Exploit for Deserialization of Untrusted Data in Apache Activemq

CVE-2023-46604 This repository contains an exploit script and...

Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Apple Iphone_Os

CVE-2018-4407 is a heap buffer overflow vulnerability in the XNU operating system kernel, affecting both iOS and macOS. The vulnerability can lead to a denial-of-service DOS attack. The exploit is a simple and fast BOF Buffer Overflow attack that can be launched using the provided Python script...