This repository contains a proof-of-concept exploit script for CVE-2025-32432, a pre-authentication Remote Code Execution (RCE) vulnerability affecting CraftCMS versions 4.x and 5.x. The vulnerability exists in the asset transform generation feature of CraftCMS.
☆24Apr 27, 2025Updated 11 months ago
Alternatives and similar repositories for CVE-2025-32432
Users that are interested in CVE-2025-32432 are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- CraftCMS RCE Checker (CVE-2025-32432)☆10Apr 27, 2025Updated 11 months ago
- Nuclei template to detect Apache servers vulnerable to CVE-2024-38473☆30Aug 24, 2024Updated last year
- This tool serves as an initial version scanner specifically designed for PrestaShop, a popular e-commerce platform. The primary purpose o…☆20Jun 2, 2025Updated 10 months ago
- BpArsenal, a Burp Suite plugin that can quickly convert http requests into command-line tool execution, launch third-party tools and open…☆22Oct 31, 2025Updated 5 months ago
- Hands-on challenges for learning how to reverse engineer Flutter applications.☆42Jan 31, 2026Updated 2 months ago
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Pler - Domain Probe and Cloudflare Filter Tool. Pler is a simple yet powerful Python script to check whether a domain is using Cloudflare…☆22Aug 12, 2025Updated 8 months ago
- VulnWatchdog 是一个自动化的漏洞监控和分析工具。它可以监控 GitHub 上的 CVE 相关仓库,获取漏洞信息和 POC 代码,并使用 GPT 进行智能分析,生成详细的分析报告。☆93Updated this week
- A fast and efficient subdomain hijacking scanner that checks for takeover vulnerabilities by matching HTTP response bodies against predef…☆29Apr 12, 2026Updated last week
- Wordlists for Wfuzz or Dirbuster☆26Feb 19, 2016Updated 10 years ago
- Confluence Pre-Auth Remote Code Execution via OGNL Injection (CVE-2022-26134)☆44Jun 6, 2022Updated 3 years ago
- :)☆12Mar 24, 2021Updated 5 years ago
- CVE-2024-21006 exp☆17Jul 29, 2024Updated last year
- 二开xiasql☆57Jan 8, 2026Updated 3 months ago
- ☆13Dec 30, 2024Updated last year
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- A tiny demo app using SSL pinning to block HTTPS MitM interception☆13Aug 8, 2022Updated 3 years ago
- WannaCry_HTA 是一个基于 HTA(HTML Application)技术开发的高度仿真 WannaCry 勒索病毒界面模拟程序。该项目简单、完全可控,专为安全研究、应急演练和安全教育场景设计。界面UI参考zR00t1师傅项目编写。☆25Aug 13, 2025Updated 8 months ago
- Google Dork Scanner for Google Chrome Extension☆17May 10, 2025Updated 11 months ago
- A Discord Bot to kick users that have specific roles too long.☆12Jun 18, 2020Updated 5 years ago
- 渗透测试辅助工具箱,反弹shell,命令生成器,输入对应IP端口即可,实现一劳永逸☆37Feb 8, 2023Updated 3 years ago
- Writeup Template. Feel free to replicate but please give me credit!☆13Nov 7, 2025Updated 5 months ago
- Simple XSS vulnerability checker tool very useful with xsschecker.☆28Nov 21, 2025Updated 4 months ago
- Go based apiban client☆13Jan 7, 2025Updated last year
- A Moodle Scanner☆43Mar 20, 2026Updated 3 weeks ago
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Subdosec is a fast, accurate subdomain takeover scanner with no false positives. It also offers a database of sites vulnerable to subdoma…☆61Feb 24, 2026Updated last month
- Blank methodology sheet for the OSWE exam☆13Dec 17, 2021Updated 4 years ago
- Three lines of code to give your AI agents persistent memory. Reduce 90% token consumption while also maintaining quality.☆97Updated this week
- Golang Automation Framework for Cobalt Strike using the Rest API☆59Apr 10, 2026Updated last week
- CVE-2023-22894☆13Apr 24, 2023Updated 2 years ago
- Private nuclei templates for BBP and OT/IIoT/MIoT enumeration, use responsibly☆36Aug 27, 2025Updated 7 months ago
- A basic Android background service that connects to a remote server, executes commands, and returns encrypted output. Disguised as a syst…☆22Aug 2, 2025Updated 8 months ago
- WordPress Elementor 3.6.0 3.6.1 3.6.2 RCE POC☆16Apr 17, 2022Updated 4 years ago
- 读取dump向日葵&Todesk进程的文件获得连接信息☆17Sep 27, 2024Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- 寻找脆弱资产☆11Jun 28, 2024Updated last year
- Vulnerability POC/EXP Collection and Classification☆23Sep 18, 2024Updated last year
- 这是一个结合 Burp Suite 扩展插件 和 ProxyPool 爬虫代理 IP 池 的集成方案,用于自动化获取、验证和管理免费代理,实现高效的 HTTP 代理切换。插件支持直接粘贴代理列表或访问 ProxyPool API URL 获取代理,支持 HTTP 和 SOC…☆30Oct 30, 2025Updated 5 months ago
- Script that download 37+ open source nuclei templates☆45Sep 2, 2022Updated 3 years ago
- CVE-2023-22515: Confluence Broken Access Control Exploit☆150Nov 12, 2025Updated 5 months ago
- UEFI firmware image viewer and editor☆10Nov 10, 2018Updated 7 years ago
- Supershell反制☆32Aug 8, 2023Updated 2 years ago