Script to exploit Grafana CVE-2025-4123: XSS and Full-Read SSRF
☆56Jul 28, 2025Updated 10 months ago
Alternatives and similar repositories for CVE-2025-4123
Users that are interested in CVE-2025-4123 are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- kubernetes rootkit☆35Dec 18, 2023Updated 2 years ago
- ☆53Mar 25, 2025Updated last year
- ☆45Mar 5, 2025Updated last year
- Pen Hunter is a comprehensive vulnerability scanning tool designed for penetration testers, security researchers and bug bounties. it aut…☆27May 4, 2026Updated 3 weeks ago
- A Chrome extension that automatically scans web pages and internal links for user-defined keywords, storing results and sending notificat…☆25Sep 28, 2025Updated 8 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- ARL官方仓库备份项目+指纹添加工具:ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。☆19May 13, 2024Updated 2 years ago
- POC of CVE-2025-7783☆32Oct 31, 2025Updated 6 months ago
- Dump Linux keyrings☆24Jul 15, 2024Updated last year
- Terminal-based IDA disassembly, microcode and pseudocode dumper☆45May 12, 2026Updated 2 weeks ago
- ☆179Mar 16, 2026Updated 2 months ago
- Javascript file change monitoring☆19May 22, 2026Updated last week
- 致远OA通过发送特殊请求获取管理员cookie,再通过文件上传接口上传webshell压缩文件,最后发送解压请求获取webshell☆10Apr 11, 2021Updated 5 years ago
- ☆94Aug 26, 2025Updated 9 months ago
- Grafanav8.*版本任意文件读取漏洞批量检测工具:该漏洞目前为0day漏洞,未授权的攻击者利用该漏洞,能够获取服务器敏感文件。☆13Dec 23, 2021Updated 4 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- PoC☆12Apr 7, 2025Updated last year
- A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs☆77Jun 12, 2025Updated 11 months ago
- Exploit for CVE-2024-20767 - Adobe ColdFusion☆34Dec 19, 2024Updated last year
- Tool for Active Directory Certificate Services enumeration and abuse☆13Oct 7, 2024Updated last year
- Dockerfile and Kubernetes manifests for reproduce CVE-2024-3094☆14Apr 6, 2024Updated 2 years ago
- ☆84Aug 30, 2024Updated last year
- A Powerful XSS,RXSS,BXSS finding tool☆32Oct 29, 2025Updated 7 months ago
- SpecOps is a Burp Suite extension that ingests an OpenAPI or Swagger spec and instantly builds a workbench to test every documented endpo…☆32Mar 27, 2026Updated 2 months ago
- Apache Solr Backup/Restore APIs RCE Poc (CVE-2023-50386)☆63Feb 29, 2024Updated 2 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Exploit for CVE-2024-29847☆19Sep 15, 2024Updated last year
- ExploitBench measures how far AI agents climb, from reaching vulnerable code, to triggering the bug, to building exploit primitives, to a…☆184May 16, 2026Updated last week
- Community curated list of templates for the nuclei engine to find security vulnerabilities.☆104Nov 24, 2025Updated 6 months ago
- ☆66Sep 8, 2025Updated 8 months ago
- ☆38Apr 24, 2024Updated 2 years ago
- Script to read input from stdin and encode it☆19Aug 23, 2023Updated 2 years ago
- A gadget for converting PE files to shellcode.☆14Jan 9, 2020Updated 6 years ago
- Automated GitHub secret scanning with smart alerting & monitoring.☆31Jan 15, 2026Updated 4 months ago
- PoC and Detection for CVE-2024-21626☆77Feb 6, 2024Updated 2 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- A Go client to receive real-time data messages from Polymarket☆12Jun 25, 2025Updated 11 months ago
- ShootCutMe an .LNK file creator tool for redteamer☆16Oct 2, 2024Updated last year
- Pyload RCE with js2py sandbox escape☆18Oct 26, 2024Updated last year
- A no-reboot, in-memory Linux persistence PoC leveraging namespace joining, user-namespace elevation, and self‑deletion.☆65Aug 6, 2025Updated 9 months ago
- iOS traffic interception framework which route all device HTTP/HTTPS traffic through Burp Suite via a system-wide VPN tunnel☆43Feb 15, 2026Updated 3 months ago
- APKdgo is a command-line tool for downloading Android APK files from multiple sources and app stores, making it easy to fetch packages.☆31Mar 10, 2026Updated 2 months ago
- Assisting Go Analysis and Reversing☆101Nov 13, 2025Updated 6 months ago