AiGptCode / WordPress-Auto-Admin-Account-and-Reverse-Shell-cve-2024-27956
WordPress Auto Admin Account Creation and Reverse Shell cve-2024-27956 automates the process of creating a new administrator account in a WordPress site and executing a reverse shell on the target server. It utilizes the wp-automatic plugin's CSV injection vulnerability to execute SQL queries
☆86Updated 2 months ago
Related projects: ⓘ
- CVE-2024-32640 | Automated SQLi Exploitation PoC☆60Updated 4 months ago
- ShodanX is a tool to gather information of targets using shodan dorks⚡.☆146Updated 5 months ago
- ☆36Updated this week
- GoogleDorker an advance level of cli based Google Dorking Tool☆48Updated 11 months ago
- A tool for extract Endpoints, URLs and Secrets from contents☆52Updated 4 months ago
- ☆27Updated 2 months ago
- functions to exploit common web application vulnerabilities such as SQL Injection, Cross-Site Scripting (XSS), Server-Side Request Forger…☆70Updated 4 months ago
- ☆99Updated 3 months ago
- ☆110Updated 7 months ago
- Parse FFUF results in GUI with option to sort based by response code , size , keyword☆78Updated last week
- ☆22Updated 3 months ago
- It is a tool for scanning and exploiting the famous SQL injection vulnerability in more than millions of sites. The exploit was programme…☆69Updated 2 months ago
- ☆89Updated 3 months ago
- ☆35Updated this week
- Probuster : A Python based Web Application Penetration testing tool for Information Gathering⚡.☆52Updated 2 months ago
- Automation tool to testing and confirm the xss vulnerability.☆104Updated this week
- ☆101Updated this week
- ☆47Updated 3 months ago
- CVE-2024-4040 CrushFTP SSTI LFI & Auth Bypass | Full Server Takeover | Wordlist Support☆53Updated 2 months ago
- ☆120Updated this week
- AutoRecon-XSS is a script designed for automated reconnaissance of XSS vulnerabilities. It crawls the target URL or alive domains, extrac…☆131Updated 6 months ago
- ☆92Updated last month
- Nafeed-Broken-Link: A Python tool designed to check for broken social media links on a given domain. This script crawls all accessible pa…☆53Updated last month
- ☆45Updated this week
- ☆16Updated last month
- Checks for SSRF using built-in custom Payloads after fetching URLs from Multiple Passive Sources & applying complex patterns aimed at SSR…☆118Updated last week
- ☆55Updated 5 months ago
- ☆166Updated this week
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…☆70Updated last month
- ☆24Updated this week