1826 matches found
Exploit for Deserialization of Untrusted Data in Siemens 6Bk1602-0Aa12-0Tp0_Firmware
log4j-shell-poc A Proof-Of-Concept for the recently found CVE-2021-44228 vulnerability. Recently there was a new vulnerability in log4j, a java logging library that is very widely used in the likes of elasticsearch, minecraft and numerous others. In this repository we have made and example...
Exploit for Code Injection in Ispconfig
CVE-2023-46818 - ISPConfig PHP Code Execution | Exploit Hi...
Exploit for CVE-2017-0143
💬 README中文 • Compile/Install/Run • Parameter Description • How to use • Scenario • POC List • Custom Scan • Best Practices Features - Free one id Multi-target web netcat for reverse shell - What is scan4all: integrated vscan, nuclei, ksubdomain, subfinder, etc., fully automated and intelligent。re...
Exploit for Path Traversal in Apache Http_Server
!bannerhttps://img.shields.io/badge/ApachePathTraversal-RCEC...
Exploit for Code Injection in Xwiki
Reverse shell for CVE-2025-24893 bash python3 CVE-2025-...
Malicious code in python-dev-toolkit (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 3e8bbf18a10505977ab19adc6dd13d15e1c7df3c69391e1c930289b953619549 Installing packages exfiltrates data different in different packages and versions or run revshells --- Category: MALICIOUS - The campaign has clearly malicious...
MAL-2025-191839 Malicious code in python-dev-toolkit (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 3e8bbf18a10505977ab19adc6dd13d15e1c7df3c69391e1c930289b953619549 Installing packages exfiltrates data different in different packages and versions or run revshells --- Category: MALICIOUS - The campaign has clearly malicious...
Exploit for Improper Restriction of XML External Entity Reference in Sysaid
From-EternalBlue-to-CVE-2025-2776-The-Evolution-of-an-SMB-Atta...
Exploit for CVE-2007-2447
CVE-2007-2447 Samba Exploit A Rust implementation of the CVE-...
Exploit for Code Injection in Xwiki
solrsearch-rce-exploit Unauth RCE PoC for XWiki SolrSearch CV...
GHSA-4GV9-MP8M-592R Langflow Vulnerable to Privilege Escalation via CLI Superuser Creation (Post-RCE)
This vulnerability was discovered by researchers at Check Point. We are sharing this report as part of a responsible disclosure process and are happy to assist in validation and remediation if needed. Summary A privilege escalation vulnerability exists in Langflow containers where an authenticate...
CVE-2025-55745
UnoPim is an open-source Product Information Management PIM system built on the Laravel framework. Versions 0.3.0 and prior are vulnerable to CSV injection, also known as formula injection, in the Quick Export feature. This vulnerability allows attackers to inject malicious content into exported...
CVE-2025-55745
CVE-2025-55745 affects UnoPim (Laravel-based PIM). Versions 0.3.0 and earlier are vulnerable to CSV/Formula Injection in Quick Export, allowing malicious content in exported CSVs to be interpreted as formulas, potentially enabling remote code execution (including reverse shells). Remediation: upg...
PT-2025-34444 · Microsoft +1 · Office Excel +1
Name of the Vulnerable Software and Affected Versions: UnoPim versions prior to 0.3.1 Description: UnoPim is an open-source Product Information Management PIM system built on the Laravel framework. Versions 0.3.0 and prior are susceptible to CSV injection, also known as formula injection, in the...
Exploit for CVE-2025-49113
CVE-2025-49113 – Roundcube 1.6.10 Authenticated Remote Code Ex...
Exploit for CVE-2024-28397
CVE-2024-28397 RCE Script Default reverse shell payload and o...
Skyvern 0.1.85 Server-Side Template Injection
Proof of concept exploit that leverages a server-side template injection flaw in Skyvern versions up to 0.1.85 to launch a reverse shell...
Exploit for CVE-2025-32778
CVE-2025-32778 - Web-Check Command Injection Exploit !Criti...
📄 Shenzhen Aitemi M300 Wi-Fi Repeater Unauthenticated Remote Code Execution
Shenzhen Aitemi M300 Wi-Fi Repeater suffers from a remote code execution vulnerability. package main import "flag" "fmt" "io" "net/http" "net/url" "os" "strings" / Shenzhen Aitemi M300 Wi-Fi Repeater Unauthenticated RCE CVE-2025-34152 - does not require authentication even when the login panel is...
Exploit for Code Injection in Xwiki
CVE-2025-24893 Install bun: bash curl -fsSL https://bun.c...