MrCl0wnLab / Nuclei-Template-CVE-2022-1388-BIG-IP-iControl-REST-Exposed
This vulnerability may allow an unauthenticated attacker with network access to the BIG-IP system through the management port and/or self IP addresses to execute arbitrary system commands, create or delete files, or disable services. There is no data plane exposure; this is a control plane issue only.
☆23Updated 2 years ago
Related projects: ⓘ
- cve-2022-42889 Text4Shell CVE-2022-42889 affects Apache Commons Text versions 1.5 through 1.9. It has been patched as of Commons Text ver…☆37Updated last year
- Case for CVE-2022-30778☆23Updated 2 years ago
- Proof of Concept for Path Traversal in Apache Struts ("CVE-2023-50164")☆57Updated 9 months ago
- Automatic Tools For Metabase Exploit Known As CVE-2023-38646☆27Updated last year
- Another tool for exploiting CVE-2017-9248, a cryptographic weakness in Telerik UI for ASP.NET AJAX dialog handler.☆43Updated 3 weeks ago
- ☆33Updated this week
- Enumerate AWS cloud resources based on provided credential☆50Updated 2 years ago
- CVE-2021-38647 - POC to exploit unauthenticated RCE #OMIGOD☆69Updated 2 years ago
- Somewhat Reliable PoC Exploit for CVE-2022-36804 (BitBucket Critical Command Injection)☆15Updated 9 months ago
- A fully automated, accurate, and extensive scanner for finding text4shell RCE CVE-2022-42889☆50Updated last year
- Python script to exploit CVE-2022-22954 and then exploit CVE-2022-22960☆2Updated 2 years ago
- Exploit for CVE-2024-20767 - Adobe ColdFusion☆33Updated 5 months ago
- pdfkit <0.8.6 command injection shell. The package pdfkit from 0.0.0 are vulnerable to Command Injection where the URL is not properly sa…☆22Updated last year
- The vulnerability allowed a low-privileged user to escalate privileges to domain administrator in a default Active Directory environment …☆42Updated 2 years ago
- client-side prototype pullution vulnerability scanner☆46Updated 3 years ago
- This is a pre-authenticated RCE exploit for VMware vRealize Operations Manager☆48Updated 11 months ago
- Microsoft Exchange password spray tool with proxy support.☆40Updated 3 years ago
- PickleC2 is a post-exploitation and lateral movements framework☆83Updated 3 years ago
- Exploits targeting vBulletin.☆76Updated last year
- Zimbra Unauthenticated Remote Code Execution Exploit (CVE-2022-27925)☆56Updated 2 years ago
- Proof of Concept Exploit for PaperCut CVE-2023-27350☆46Updated last year
- CVE-2022-41040 nuclei template☆19Updated last year
- ElasticSearch exploit and Pentesting guide for penetration tester☆22Updated last year
- Just learning around new stuff mostly Red Teaming and such but will try to see if I can update or simplify them more, nothing too exotic …☆34Updated 2 years ago
- Windows Privilege Escalation☆41Updated 2 years ago
- Log4j2 CVE-2021-44228 revshell, ofc it suck!!☆19Updated 2 years ago
- A tool for performing light brute-forcing of HTTP servers to identify commonly accessible NTLM authentication endpoints.☆77Updated 9 months ago
- This extension provides a way to discover NoSQL injection vulnerabilities.☆22Updated last year
- Arbitrary File Disclosure Vulnerability in Icinga Web 2 <2.8.6, <2.9.6, <2.10☆14Updated last year
- CVE-2021-26855: PoC (Not a HoneyPoC for once!)☆27Updated 3 years ago