This repository contains a proof-of-concept exploit script for CVE-2025-32432, a pre-authentication Remote Code Execution (RCE) vulnerability affecting CraftCMS versions 4.x and 5.x. The vulnerability exists in the asset transform generation feature of CraftCMS.
☆24Apr 27, 2025Updated last year
Alternatives and similar repositories for CVE-2025-32432
Users that are interested in CVE-2025-32432 are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- CraftCMS RCE Checker (CVE-2025-32432)☆10Apr 27, 2025Updated last year
- Nuclei template to detect Apache servers vulnerable to CVE-2024-38473☆30Aug 24, 2024Updated last year
- This tool serves as an initial version scanner specifically designed for PrestaShop, a popular e-commerce platform. The primary purpose o…☆20Jun 2, 2025Updated 11 months ago
- BpArsenal, a Burp Suite plugin that can quickly convert http requests into command-line tool execution, launch third-party tools and open…☆22Oct 31, 2025Updated 6 months ago
- Hands-on challenges for learning how to reverse engineer Flutter applications.☆43Jan 31, 2026Updated 3 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Pler - Domain Probe and Cloudflare Filter Tool. Pler is a simple yet powerful Python script to check whether a domain is using Cloudflare…☆22Aug 12, 2025Updated 8 months ago
- A fast and efficient subdomain hijacking scanner that checks for takeover vulnerabilities by matching HTTP response bodies against predef…☆29Apr 12, 2026Updated 3 weeks ago
- ☆14Aug 22, 2025Updated 8 months ago
- Wordlists for Wfuzz or Dirbuster☆26Feb 19, 2016Updated 10 years ago
- VulnWatchdog 是一个自动化的漏洞监控和分析工具。它可以监控 GitHub 上的 CVE 相关�仓库,获取漏洞信息和 POC 代码,并使用 GPT 进行智能分析,生成详细的分析报告。☆95Updated this week
- :)☆12Mar 24, 2021Updated 5 years ago
- CVE-2024-21006 exp☆17Jul 29, 2024Updated last year
- AI-Driven Breach and Attack Simulation Tool (Initial Proof of Concept for AI Pentest Copilot)☆27Jan 6, 2025Updated last year
- ☆13Dec 30, 2024Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- A tiny demo app using SSL pinning to block HTTPS MitM interception☆13Aug 8, 2022Updated 3 years ago
- Google Dork Scanner for Google Chrome Extension☆17May 10, 2025Updated 11 months ago
- WannaCry_HTA 是一个基于 HTA(HTML Application)技术开发的高度仿真 WannaCry 勒索病毒界面模拟程序。该项目简单、完全可控,专为安全研究、应急演练和安全教育场景设计。界面UI参考zR00t1师傅项目编写。☆25Aug 13, 2025Updated 8 months ago
- A Discord Bot to kick users that have specific roles too long.☆12Jun 18, 2020Updated 5 years ago
- 渗透测试辅助工具箱,反弹shell,命令生成器,输入对应IP端口即可,实现一劳永逸☆37Feb 8, 2023Updated 3 years ago
- 二开xiasql☆58Jan 8, 2026Updated 4 months ago
- In Detail Methodology of How I perform Web Pentesting☆10Oct 18, 2025Updated 6 months ago
- Simple XSS vulnerability checker tool very useful with xsschecker.☆27Nov 21, 2025Updated 5 months ago
- Go based apiban client☆13Jan 7, 2025Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- ☆30Nov 25, 2025Updated 5 months ago
- A Moodle Scanner☆43Mar 20, 2026Updated last month
- Blank methodology sheet for the OSWE exam☆13Dec 17, 2021Updated 4 years ago
- Subdosec is a fast, accurate subdomain takeover scanner with no false positives. It also offers a database of sites vulnerable to subdoma…☆61Feb 24, 2026Updated 2 months ago
- Golang Automation Framework for Cobalt Strike using the Rest API☆59Apr 10, 2026Updated 3 weeks ago
- CVE-2023-22894☆13Apr 24, 2023Updated 3 years ago
- Private nuclei templates for BBP and OT/IIoT/MIoT enumeration, use responsibly☆36Aug 27, 2025Updated 8 months ago
- Handheld WiFi Scanner based on ESP8266☆12Dec 17, 2021Updated 4 years ago
- A basic Android background service that connects to a remote server, executes commands, and returns encrypted output. Disguised as a syst…☆22Aug 2, 2025Updated 9 months ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- 读取dump向日葵&Todesk进程的文件获得连接信息☆17Sep 27, 2024Updated last year
- Small, one-off scripts for security related stuff I've written over time☆37Mar 2, 2025Updated last year
- About Me☆33May 21, 2025Updated 11 months ago
- golang版 屏幕监控☆13Nov 26, 2022Updated 3 years ago
- Vulnerability POC/EXP Collection and Classification☆23Sep 18, 2024Updated last year
- Script that download 37+ open source nuclei templates☆45Sep 2, 2022Updated 3 years ago
- 这是一个结合 Burp Suite 扩展插件 和 ProxyPool 爬虫代理 IP 池 的集成方案,用于自动化获取、验证和管理免费代理,实现高效的 HTTP 代理切换。插件支持直接粘贴代理列表或访问 ProxyPool API URL 获取代理,支持 HTTP 和 SOC…☆30Oct 30, 2025Updated 6 months ago