MrTaherAmine / CVE-2018-10583
An information disclosure vulnerability occurs when LibreOffice 6.0.3 and Apache OpenOffice Writer 4.1.5 automatically process and initiate an SMB connection embedded in a malicious file, as demonstrated by "xlink:href=file://192.168.0.2/test.jpg" within an "office:document-content" element in a ".odt XML document".
☆9Updated 6 years ago
Alternatives and similar repositories for CVE-2018-10583:
Users that are interested in CVE-2018-10583 are comparing it to the libraries listed below
- CMSmap tool v0.6 - Simple CMS Scanner☆14Updated 7 years ago
- A BurpSuite extension for beautifying .NET message parameters and hiding some of the extra clutter that comes with .NET web apps (i.e. __…☆12Updated 9 years ago
- Collection of things made during my SLAE 32-bit journey☆14Updated 3 years ago
- Generate pentest reports based on github issues.☆17Updated 2 years ago
- This is a Firefox WebExtension that monitors the browsing activity and automatically perform an automated XSS vulnerability scan by submi…☆19Updated 8 years ago
- Modified version of ActiveScan++ Burp Suite extension☆31Updated 8 years ago
- Shodanwave - Netwave IP Camera☆18Updated 7 years ago
- Nashorn Post Exploitation☆32Updated 7 years ago
- Strutsy - Mass exploitation of Apache Struts (CVE-2017-5638) vulnerability☆10Updated 6 years ago
- A C# web handler that is vulnerable to XXE with PoC. This is to serve as an example of what vulnerable C# code looks like.☆26Updated 11 years ago
- ViewState Payload Generator☆26Updated 6 years ago
- PHDAYS |||☆17Updated 11 years ago
- PoC ActiveX SVG Document Execution☆21Updated 6 years ago
- CVE-2017-10271 WEBLOGIC RCE (TESTED)☆38Updated 7 years ago
- ☆11Updated 7 years ago
- A tool to help you manage your leaks☆34Updated 7 years ago
- ☆15Updated 9 years ago
- An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match☆42Updated 12 years ago
- ☆10Updated 9 years ago
- ☆13Updated 7 years ago
- ☆21Updated 5 years ago
- CVE-2017-8570 Exploit☆21Updated 7 years ago
- Slides of the talk on Injection attacks in apps with NoSQL Backends, given at null OWASP Bangalore monthly meet on 27th April 2019☆22Updated 5 years ago
- Automatically parses and attacks BloodHound-generated graphs☆41Updated 6 years ago
- A collection of published exploits and proof-of-concept code.☆21Updated 7 years ago
- BlackHat Europe 2017 Slides☆26Updated 7 years ago
- Demonstrating why Dynamic Method Invocation with unrestricted method names (the old default of Struts) is dangerous.☆12Updated 6 years ago
- Hacking Wordlist collections for password cracking are attached in the below files☆16Updated 6 years ago
- CVE-2017-10366: Oracle PeopleSoft 8.54, 8.55, 8.56 Java deserialization exploit☆25Updated 6 years ago
- Burp plugin to do random fuzzing of HTTP requests☆33Updated 8 years ago