This repository contains a proof-of-concept exploit script for CVE-2025-32432, a pre-authentication Remote Code Execution (RCE) vulnerability affecting CraftCMS versions 4.x and 5.x. The vulnerability exists in the asset transform generation feature of CraftCMS.
☆25Apr 27, 2025Updated last year
Alternatives and similar repositories for CVE-2025-32432
Users that are interested in CVE-2025-32432 are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- CraftCMS RCE Checker (CVE-2025-32432)☆10Apr 27, 2025Updated last year
- This tool serves as an initial version scanner specifically designed for PrestaShop, a popular e-commerce platform. The primary purpose o…☆20Jun 2, 2025Updated last year
- Two plugins to recover TMP keys from Saleae logic analyser traces☆15Jun 10, 2022Updated 4 years ago
- BpArsenal, a Burp Suite plugin that can quickly convert http requests into command-line tool execution, launch third-party tools and open…☆22Oct 31, 2025Updated 7 months ago
- Hands-on challenges for learning how to reverse engineer Flutter applications.☆44Jan 31, 2026Updated 4 months ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Pler - Domain Probe and Cloudflare Filter Tool. Pler is a simple yet powerful Python script to check whether a domain is using Cloudflare…☆21Aug 12, 2025Updated 10 months ago
- A fast and efficient subdomain hijacking scanner that checks for takeover vulnerabilities by matching HTTP response bodies against predef…☆31Apr 12, 2026Updated 2 months ago
- Wordlists for Wfuzz or Dirbuster☆26Feb 19, 2016Updated 10 years ago
- VulnWatchdog 是一个自动化的漏洞监控和分析工具。它可以监控 GitHub 上的 CVE 相关仓库,获取漏洞信息和 POC 代码,并使用 GPT 进行智能分析,生成详细的分析报告。☆99Updated this week
- ☆14Aug 22, 2025Updated 9 months ago
- Confluence Pre-Auth Remote Code Execution via OGNL Injection (CVE-2022-26134)☆44Jun 6, 2022Updated 4 years ago
- :)☆12Mar 24, 2021Updated 5 years ago
- CVE-2024-21006 exp☆17Jul 29, 2024Updated last year
- AI-Driven Breach and Attack Simulation Tool (Initial Proof of Concept for AI Pentest Copilot)☆27Jan 6, 2025Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- ☆12Dec 30, 2024Updated last year
- A Discord Bot to kick users that have specific roles too long.☆11Jun 18, 2020Updated 6 years ago
- WannaCry_HTA 是一个基于 HTA(HTML Application)技术开发的高度仿真 WannaCry 勒索病毒界面模拟程序。该项目简单、完全可控,专为安全研究、应急演练和安全教育场景设计。界面UI参考zR00t1师傅项目编写。☆24Aug 13, 2025Updated 10 months ago
- 渗透测试辅助工具箱,反弹shell,命令生成器,输入对应IP端口即可,实现一劳永逸☆37Feb 8, 2023Updated 3 years ago
- In Detail Methodology of How I perform Web Pentesting☆10Oct 18, 2025Updated 8 months ago
- Writeup Template. Feel free to replicate but please give me credit!☆13Nov 7, 2025Updated 7 months ago
- Simple XSS vulnerability checker tool very useful with xsschecker.☆27Nov 21, 2025Updated 6 months ago
- 二开xiasql☆63Jan 8, 2026Updated 5 months ago
- ☆31Nov 25, 2025Updated 6 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- A Moodle Scanner☆45Mar 20, 2026Updated 2 months ago
- Golang Automation Framework for Cobalt Strike using the Rest API☆60Apr 10, 2026Updated 2 months ago
- CVE-2023-22894☆13Apr 24, 2023Updated 3 years ago
- Private nuclei templates for BBP and OT/IIoT/MIoT enumeration, use responsibly☆37Aug 27, 2025Updated 9 months ago
- Handheld WiFi Scanner based on ESP8266☆12Dec 17, 2021Updated 4 years ago
- A basic Android background service that connects to a remote server, executes commands, and returns encrypted output. Disguised as a syst…☆25Aug 2, 2025Updated 10 months ago
- WordPress Elementor 3.6.0 3.6.1 3.6.2 RCE POC☆16Apr 17, 2022Updated 4 years ago
- 读取dump向日葵&Todesk进程的文件获得连接信息☆16Sep 27, 2024Updated last year
- About Me☆33May 11, 2026Updated last month
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- golang版 屏幕监控☆13Nov 26, 2022Updated 3 years ago
- 寻找脆弱资产☆11Jun 28, 2024Updated last year
- Script that download 37+ open source nuclei templates☆45Sep 2, 2022Updated 3 years ago
- Vulnerability POC/EXP Collection and Classification☆23Sep 18, 2024Updated last year
- 这是一个结合 Burp Suite 扩展插件 和 ProxyPool 爬虫代理 IP 池 的集成方案,用于自动化获取、验证和管理免费代理,实现高效的 HTTP 代理切换。插件支持直接粘贴代理列表或访问 ProxyPool API URL 获取代理,支持 HTTP 和 SOC…☆32Oct 30, 2025Updated 7 months ago
- CVE-2023-22515: Confluence Broken Access Control Exploit☆151Nov 12, 2025Updated 7 months ago
- 存放投稿里的一些文件☆11Oct 31, 2020Updated 5 years ago