Exploit for Unsafe Reflection in Github Enterprise_Server

Intro This repository contains exploits we have developed for...

Exploit for Improper Access Control in Ruijie Rg-Ew1200G_Firmware

Ruijie-RG-EW1200G CVE-2023-4169CVE-2023-3306CVE-2023-4415 1...

Exploit for NULL Pointer Dereference in Gpac

CVE-2023-4683-Test This repo holds an easy to use POC for CVE...

Exploit for Special Element Injection in Rocket.Chat

CVE-2021-22911 If you have already registered...

Exploit for Path Traversal in Microsoft

CVE-2021-40444 PoC Malicious docx generator to exploit CVE-20...

Exploit for Out-of-bounds Write in Polkit_Project Polkit

CVE-2021-4034 Local pri...

Exploit for OS Command Injection in Zyxel Usg_Flex_100W_Firmware

CVE-2022-30525 Zyxel Firewall Remote Command Injection A py...

Exploit for CVE-2022-30190

follinacve2022-30190 A proof of concept to CVE-2022-30190 f...

Exploit for Path Traversal in Apache Http_Server

CVE-2021-41773 Hello guys, yesterday The new CVE-2021-41773 f...

Exploit for Unrestricted Upload of File with Dangerous Type in Rocklobster Contact_Form_7

Check-WP-CVE-2020-35489 CVE-2020-35489 The CVE-2020-35489...

Exploit for SQL Injection in Redmine

CVE-2019-18890 CVE-2019-18890 POC Proof of Concept REDMINE...

Exploit for CVE-2025-4138

CVE-2025-4138 Auto-Sudo Generator A Python script to generate...

Exploit for OS Command Injection in Gitea

Gitea Git Hooks RCE CVE-2020-14144 OffsecProvingGrounds P...

Exploit for CVE-2025-49388

CVE-2025-49388 WordPress Miraculous Core Plugin Plugin OPTI...

Exploit for Link Following in 7-Zip

CVE-2025-55188-7z-exploit --- 7-Zip Symlink Arbitrary File...

Exploit for Incorrect Permission Assignment for Critical Resource in Facebook Below

CVE-2025-27591 description Basically below tool allow f...

Exploit for Path Traversal in Jenkins

Jenkins CVE-2024-23897 Lab Уязвимость чтения произвольных фай...

Exploit for Out-of-bounds Write in Fortinet Fortiproxy

fgt-cve-2023-27997-exploit FortiGate SSL‑VPN CVE‑2023‑279...

Exploit for Code Injection in Rejetto Http_File_Server

CVE-2024-23692-poc CVE-2024-23692 is a template injection vu...

Exploit for CVE-2024-45200

Kart"LAN"Pwn CVE-2024-45200https://nvd.nist.gov/vuln/detai...

Exploit for Code Injection in Apache Commons_Text

Quickstart bash sudo apt install golang To run like...

Exploit for Improper Authentication in Ivanti Endpoint_Manager_Mobile

CVE-2023-35078 Ivanti Endpoi...

Exploit for Out-of-bounds Write in Linux Linux_Kernel

My POC for CVE-2022-...

Exploit for Cross-Site Request Forgery (CSRF) in Filebrowser

CVE-2021-46398 - Lalie ARNOUD, Gaspard ANDRIEU In this reposi...

Exploit for Path Traversal in Wso2 Api_Manager

CVE-2022-29464 CVE-2022-29464 POC exploit https://github.com/...

Exploit for Improper Input Validation in Apache Log4J

tejas-nagchandi/CVE-2021-45105 Replicating CVE-2021-45105...

Exploit for Observable Discrepancy in Servicenow

CVE-2021-45901 ServiceNow - Username Enumeration !service-...

Exploit for Deserialization of Untrusted Data in Microsoft

CVE-2025-59287 ⚠ This tool is created solely for educatio...

Exploit for Race Condition in Openbsd Openssh

CVE-2018-15473-Exploit Updated version with modern Python/P...

Exploit for Code Injection in Foxcms

Day06 — FoxCMS-style RCE CVE-2025-29306 — Educational lab T...

Exploit for CVE-2025-51529

CVE-2025-51529: WordPress Cookies and Content Security Policy...

Exploit for Improper Access Control in Papercut Papercut_Mf

CVE-2023-27350 This PoC demonstrates how it’s possible to byp...

Exploit for Improper Initialization in Linux Linux_Kernel

Information c Exploit Title: Local Privilege Escalation...

Exploit for CVE-2024-52380

CVE-2024-52380-Exploit Picsmize plugin for WordPress is vulner...

Exploit for CVE-2024-53691

CVE-2024-53691 - https://www.qnap.com/en/security-advisory/qsa...

Exploit for Missing Authentication for Critical Function in Jetbrains Teamcity

TeamCity Exploit Cve 2023 42793 A quick script to exploit the...

Exploit for Improper Input Validation in Paloaltonetworks Pan-Os

CVE-2024-3400 PoC for educational purposes only. only use on...

Exploit for CVE-2022-21907

CVE-2022-21907 Vulnerability in HTTP Protocol Stack Enabling R...

Exploit for Race Condition in Apple Ipados

CVE-2021-30955 POC Proof of concept wrapped into an iOS app...

Exploit for Out-of-bounds Write in Polkit_Project Polkit

CVE-2021-4034- PoC for PwnKit: Local Privilege Escalation Vuln...

Exploit for Path Traversal in Apache Http_Server

CVE-2021-41773 Path Traversal for Apache 2.4.49 Affected b...

Exploit for Out-of-bounds Read in Ntop Ndpi

CVE PoCs This repository provides PoC files, reproduction ste...

Exploit for Deserialization of Untrusted Data in Facebook React

React2Shell Scanner A comprehensive vulnera...

Exploit for CVE-2017-0144

🔥 AKUMA'S ADVANCED LOW-HANGING FRUIT SCANNER v2.0 "Your i...

Exploit for Code Injection in Langflow

POC - Remote and unauthenticated attacker can send crafted HTT...

Exploit for Deserialization of Untrusted Data in Apache Tomcat

JSP Web Shell Uploader A simple Python tool for uploading a basi...

Exploit for Missing Authentication for Critical Function in Paloaltonetworks Pan-Os

This tool tests whether a target PAN-OS device is vulnerable to...

Exploit for Improper Restriction of XML External Entity Reference in Adobe Commerce

CVE 2024-34102 - CosmicSting XXE Vulnerability in Adobe Commer...

Exploit for Code Injection in Vmware Spring_Cloud_Data_Flow

CVE-2024-37084-Poc Setup ,Analysis , Demo exploit and poc abou...

Exploit for Improper Input Validation in Google Android

Exploit for CVE-2022-20186 The write up can be found here...