7076 matches found
MAL-2024-12200 Malicious code in artifact-lab-3-package-438d82fc (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 fb5b4138d768e7efb48da60b6d89cdb6d3e2b6dfd97a4848d38ea24ca106af84 Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...
MAL-2024-12205 Malicious code in artifact-lab-3-package-e7ffd2ef (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 a8260a6eedf520242c3d3c6ecca58394fd6b2cb465a2a1d9e34ece20db529d4b Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...
MAL-2024-12203 Malicious code in artifact-lab-3-package-d7d52d45 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 a252566eebeb4e8bc418b7ed0e585a4fee2602d921969b20b4075ec5df8d50fa Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...
MAL-2024-12196 Malicious code in artifact-lab-3-package-2387a34d (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 fee5bd32875c77b424ebb9a32f5c20b4dbfa892c17655622ba445be401db32d4 Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...
MAL-2024-12197 Malicious code in artifact-lab-3-package-2387cbf7 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 7acac602c6445456648e5d2df157f8b6085f8fb7fa4f001ec1d9fffd97da3294 Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...
MAL-2024-12193 Malicious code in artifact-lab-3-package-153c1c1a (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 ca958fff07cca914aa6f60bc0a1f7c81bb8b45e755a780830b720ab7087e410e Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...
MAL-2024-12198 Malicious code in artifact-lab-3-package-34b21b63 (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 a814378a8188b464c5289007203c2b20c3ec2a0383ee18bd96e0f41ad44d7982 Packages showing simple variants of revshell with targets to ngrok. Most probably experiments. Later versions moved to use Burp Collaborator to exfiltrate simp...
OESA-2024-1952 golang security update
. Security Fixes: The net/http HTTP/1.1 client mishandled the case where a server responds to a request with an "Expect: 100-continue" header with a non-informational 200 or higher status. This mishandling could leave a client connection in an invalid state, where the next request sent on the...
Calibre 7.15.0 Python Code Injection Exploit
This Metasploit module exploits a Python code injection vulnerability in the Content Server component of Calibre version 6.9.0 through 7.15.0. Once enabled disabled by default, it will listen in its default configuration on all network interfaces on TCP port 8080 for incoming traffic, and does no...
Malicious code in tsc-aws-s3 (npm)
The package contains a postinstall script to download and execute an ELF Metasploit reverse shell...
MAL-2024-8009 Malicious code in tsc-aws-s3 (npm)
The package contains a postinstall script to download and execute an ELF Metasploit reverse shell...
Exploit for Unrestricted Upload of File with Dangerous Type in Laravel-Admin
CVE-2023-24249 Exploit Script Description This repository...
Fuzzy matching with Ghidra BSim, a guide
TL;DR BSim, Ghidra’s new built-in plugin is a game-changer for reversing firmware and other stripped binaries. Rapidly identify and annotate functions from known libraries. Fuzzy matching works with unknowns, like exact library versions and compiler options. Automatically define custom variable...
Exploit for Unrestricted Upload of File with Dangerous Type in Pluck-Cms Pluck
CVE-2023-50564 How to use First setup a listener f...
Exploit for Unrestricted Upload of File with Dangerous Type in Chamilo Chamilo_Lms
Chamilo LMS Unauthenticated RCE PoC This is a script written...
Exploit for Code Injection in Geoserver
CVE-2024-36401-PoC This repository contains a Proof of Conce...
Exploit for Code Injection in Get-Simple Getsimple_Cms
CVE-2022-41544 Exploit Script This repository contains a scri...
Exploit for Code Injection in Get-Simple Getsimple_Cms
CVE-2022-41544 Exploit Script This repository contains a scri...
Exploit for Code Injection in Get-Simple Getsimple_Cms
CVE-2022-41544 Exploit Script This repository contains a scri...
Exploit for Code Injection in Get-Simple Getsimple_Cms
CVE-2022-41544 Exploit Script This repository contains a scri...