Exploit for Insufficient Session Expiration in Totolink T8_Firmware

CVE-2022-0944: Privilege Escalation Vulnerability in OverlayFS...

Exploit for Code Injection in Sqlpad

CVE-2022-0944 A proof of concept exploit for SQLPad RCE CVE...

pgAdmin 8.4 Code Execution

============================================================================================================================================= | Title : pgAdmin 8.4 PHP Code Execution Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 129.0.1 64 bits ...

Malicious code in calculator-c08d6d50f5964131 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 6343baa8b5e97a91b02979723f28035221550addc225d0e3911916a51ef5ef37 Clearly research/pentesting examples containing reverse shell. --- Category: PROBABLYPENTEST - Packages looking like typical pentest packages, but also anythin...

MAL-2024-12229 Malicious code in calculator-c08d6d50f5964131 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 6343baa8b5e97a91b02979723f28035221550addc225d0e3911916a51ef5ef37 Clearly research/pentesting examples containing reverse shell. --- Category: PROBABLYPENTEST - Packages looking like typical pentest packages, but also anythin...

Exploit for Improper Input Validation in Cacti

Cacti CVE-2024-25641 Authenticated Package Upload RCE Proof of...

Critical Flaws in Traccar GPS System Expose Users to Remote Attacks

Two security vulnerabilities have been disclosed in the open-source Traccar GPS tracking system that could be potentially exploited by unauthenticated attackers to achieve remote code execution under certain circumstances. Both the vulnerabilities are path traversal flaws and could be weaponized ...

Exploit for Path Traversal in Apache Http_Server

Apache-HTTP-Server-2.4.50-RCE This tool is designed to test A...

New Linux Malware 'sedexp' Hides Credit Card Skimmers Using Udev Rules

Cybersecurity researchers have uncovered a new stealthy piece of Linux malware that leverages an unconventional technique to achieve persistence on infected systems and hide credit card skimmer code. The malware, attributed to a financially motivated threat actor, has been codenamed sedexp by Aon...

Exploit for OS Command Injection in Php

PHP CGI Argument Injection CVE-2024-4577 RCE 📜 Descripti...

Exploit for CVE-2024-22120

Usage bash python exploit.py --ip --sid --hostid --phps...

Exploit for Cross-site Scripting in Wondercms

PoC exploit for CVE-2023-41425, a Wonder CMS RCE XSS vulnerabi...

Malicious code in artifact-lab-3-package-d7d52d45 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 a252566eebeb4e8bc418b7ed0e585a4fee2602d921969b20b4075ec5df8d50fa Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...

Malicious code in artifact-lab-3-package-3ccf47e8 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 7239a7e420a096b7396ccc6e482472827791876070b026e5126d694e4a548920 Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...

Malicious code in artifact-lab-3-package-b9485a2f (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 902094a9d90c1b9cc5eca3aa3d809929f664931dfa9feaea432bf85d205b06ed Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...

Malicious code in artifact-lab-3-package-e7ffd2ef (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 a8260a6eedf520242c3d3c6ecca58394fd6b2cb465a2a1d9e34ece20db529d4b Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...

Malicious code in artifact-lab-3-package-153c1c1a (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 ca958fff07cca914aa6f60bc0a1f7c81bb8b45e755a780830b720ab7087e410e Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...

Malicious code in artifact-lab-3-package-1f7a39bc (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 986e5ddc5b52149bd60f2e303abd548699bee247784d2201ea6e6814790557bf Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...

Malicious code in artifact-lab-3-package-2387a34d (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 fee5bd32875c77b424ebb9a32f5c20b4dbfa892c17655622ba445be401db32d4 Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...

Malicious code in artifact-lab-3-package-2387cbf7 (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 7acac602c6445456648e5d2df157f8b6085f8fb7fa4f001ec1d9fffd97da3294 Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...