Mr-xn / CVE-2024-32113View external linksLinks
Apache OFBIZ Path traversal leading to RCE POC[CVE-2024-32113 & CVE-2024-36104]
☆27Jun 3, 2024Updated last year
Alternatives and similar repositories for CVE-2024-32113
Users that are interested in CVE-2024-32113 are comparing it to the libraries listed below
Sorting:
- Generate AES128 and AES256 Kerberos keys from a given username, password, and realm☆18Sep 18, 2024Updated last year
- Exploit for CVE-2024-27198 - TeamCity Server☆35Dec 19, 2024Updated last year
- 一个基于jvm-sandbox高度定制化rasp☆58Sep 28, 2023Updated 2 years ago
- ☆13Feb 9, 2022Updated 4 years ago
- Exploit for CVE-2024-5009☆13Jul 8, 2024Updated last year
- ☆38Apr 5, 2024Updated last year
- Hessian UTF-8 Overlong Encoding☆21Mar 9, 2024Updated last year
- Apache OFBiz RCE Scanner & Exploit (CVE-2024-38856)☆48Oct 2, 2024Updated last year
- CVE-2024-21683 Confluence Post Auth RCE☆127May 27, 2024Updated last year
- Ruby-SAML / GitLab Authentication Bypass (CVE-2024-45409) exploit☆83Oct 7, 2024Updated last year
- PoC of Apache Dubbo CVE-2023-23638☆34Jan 29, 2024Updated 2 years ago
- Exploiting XXE Vulnerabilities on Microsoft SharePoint Server and Cloud via Confused URL Parsing☆32Jun 6, 2024Updated last year
- Tai-e的Web插件☆23Jun 11, 2024Updated last year
- CVE-2024-43044的利用方式☆20Aug 13, 2024Updated last year
- Veeam Backup Enterprise Manager Authentication Bypass (CVE-2024-29849)☆89Jun 13, 2024Updated last year
- Exploit for CVE-2024-20767 - Adobe ColdFusion☆34Dec 19, 2024Updated last year
- Example code samples from our ScriptBlock Smuggling Blog post☆95Jun 18, 2024Updated last year
- Exploit for CyberPanel Pre-Auth RCE via Command Injection☆22Nov 1, 2024Updated last year
- Making a lab and testing the CVE-2024-3116, a Remote Code Execution in pgadmin <=8.4☆12Apr 11, 2024Updated last year
- ☆12Jul 4, 2024Updated last year
- POC for CVE-2024-31982: XWiki Platform Remote Code Execution > 14.10.20☆10Jun 22, 2024Updated last year
- A vul-finder for loading CPG and automated finding vul-call-chains☆71Jul 22, 2025Updated 6 months ago
- ☆24Jan 7, 2025Updated last year
- Attacking indiscriminately every header, cookie, GET and POST parameter with blind fury.☆13Sep 25, 2025Updated 4 months ago
- JavaAgent内存马实现、检测、修复demo☆11Dec 7, 2022Updated 3 years ago
- ☆12Nov 25, 2024Updated last year
- MacroPhantom automates the process of generating XOR+Caesar encrypted shellcode and embedding it into VBA macros for Microsoft Office doc…☆18Mar 20, 2025Updated 10 months ago
- DorkTerm is a terminal-themed web-based security tool designed to assist security researchers in performing Google Dork queries efficient…☆14Jan 25, 2026Updated 3 weeks ago
- Ivy is a payload creation framework for the execution of arbitrary VBA (macro) source code directly in memory. Ivy’s loader does this by …☆24Apr 4, 2023Updated 2 years ago
- 一款不断收集用户体验和功能增改的内网信息收集工具☆31Nov 20, 2023Updated 2 years ago
- CVE-2023-34992: Fortinet FortiSIEM Command Injection Proof of Concept Exploit☆27May 21, 2024Updated last year
- Apache Dubbo漏洞测试Demo及其POC☆65Mar 27, 2023Updated 2 years ago
- CVE-2022-25845(fastjson1.2.80) exploit in Spring Env!☆106Nov 7, 2024Updated last year
- POC for Spring Kafka Deserialization Vulnerability CVE-2023-34040☆46Oct 8, 2025Updated 4 months ago
- The Poc for CVE-2024-20931☆76Feb 2, 2024Updated 2 years ago
- Proof of concept exploit for Ivanti EPM CVE-2024-13159 and others☆13Feb 19, 2025Updated 11 months ago
- Exploit for Grafana arbitrary file-read and RCE (CVE-2024-9264)☆130Dec 16, 2024Updated last year
- proof-of-concept for generating Java deserialization payload | Proxy MemShell☆221Jun 8, 2024Updated last year
- A red teaming attack paradigm against AI Agents☆32Mar 9, 2025Updated 11 months ago