79 matches found
Exploit for Deserialization of Untrusted Data in Facebook React
Zoomeye Next.js RCE Scanner Author: im-ezboy Scanner for Nex...
PT-2024-9206 ยท Apache ยท Apache Airflow
Name of the Vulnerable Software and Affected Versions: Apache Airflow versions before 2.10.3 Description: The issue is related to the exposure of sensitive configuration variables in task logs. This could allow unauthorized users to access critical data, potentially compromising the security of t...
PT-2024-7225 ยท Pfsense ยท Pfsense
Name of the Vulnerable Software and Affected Versions: pfsense version 2.5.2 Description: A cross-site scripting XSS vulnerability in pfsense allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the $pconfig variable at "interfaces groups edit.php". This...
Exploit for Command Injection in Telesquare Tlr-2005Ksh_Firmware
๐ CVE-2024-29269 Exploit This repository contains an exploit...
Exploit for Unrestricted Upload of File with Dangerous Type in Hashthemes Hash_Form
๐ HashForm Exploit Script This script demonstrates the exploi...
Exploit for Command Injection in Telesquare Tlr-2005Ksh_Firmware
๐ CVE-2024-29269 Exploit This repository contains an exploit...
Exploit for Authentication Bypass Using an Alternate Path or Channel in Jetbrains Teamcity
Cyberspace Mapping Dork Fofa app="JETBRAINS-TeamCity...
pocsuite3
This is a Python-based framework for remote vulnerability testing and proof-of-concept development, called pocsuite3. It is developed by the Knownsec 404 Team and is designed for penetration testers and security researchers. The framework comes with a powerful proof-of-concept engine and various...
pocsuite3
This is an open-sourced remote vulnerability testing and proof-of-concept development framework developed by the Knownsec 404 Team. It comes with a powerful proof-of-concept engine, many nice features for the ultimate penetration testers and security researchers. The framework supports various...
Exploit for OS Command Injection in Wago Compact_Controller_100_Firmware
CVE-2023-1698 WAGO Remote Exploit Tool Description This sc...
PT-2023-4877 ยท Jscape ยท Jscape Mft Server
Name of the Vulnerable Software and Affected Versions: JSCAPE MFT Server versions prior to 2023.1.9 Description: The issue is related to unsafe deserialization in the JSCAPE MFT Server, which allows an attacker to execute arbitrary Java code, including OS commands, via its management interface...
Exploit for Deserialization of Untrusted Data in Spip
CVE-2023-27372 SPIP -v -o report.txt ๐ Reconnaissance M...
Exploit for OS Command Injection in Telesquare Sdt-Cs3B1_Firmware
Telesquare SDT-CW3B1 1.1.0 - OS Command Injection CVE-2021-4642...
Exploit for OS Command Injection in Eparks Fiberlink_210_Firmware
CVE-2023-33617 Authenticated OS command injection vulnerabili...
PT-2023-2482
The vulnerable software is PaperCut NG, specifically version 22.0.5 Build 63914. This version is affected by an improper access control flaw in the SetupCompleted class, which allows remote attackers to bypass authentication and execute arbitrary code in the context of SYSTEM. An exploit for this...
Exploit for External Control of File Name or Path in Fortinet Fortinac
FortiNAC CVE-2022-39952 PoC for CVE-2022-39952 affecting F...
Exploit for OS Command Injection in Telesquare Sdt-Cs3B1_Firmware
Telesquare SDT-CW3B1 1.1.0 - OS Command Injection CVE-2021-4642...
Exploit for Missing Authentication for Critical Function in F5 Big-Ip_Access_Policy_Manager
F5-CVE-2022-1388-Exploit Exploit and Check Script for CVE 2022...
Exploit for Expression Language Injection in Atlassian Confluence_Data_Center
CVE-2022-26134 - Confluence Pre-Auth Remote Code Execution...
Exploit for Code Injection in Vmware Identity_Manager
CVE-2022-22954 PoC VMware Workspace ONE Access and Identity M...