Stuub/CVE-2024-4040-SSTI-LFI-PoC external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Stuub/CVE-2024-4040-SSTI-LFI-PoC

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Stuub/CVE-2024-4040-SSTI-LFI-PoC)

Close

Stuub / CVE-2024-4040-SSTI-LFI-PoCView on GitHubMore

• External links
• Readme badge

CVE-2024-4040 CrushFTP SSTI LFI & Auth Bypass | Full Server Takeover | Wordlist Support

☆63Jul 7, 2024Updated last year

Alternatives and similar repositories for CVE-2024-4040-SSTI-LFI-PoC

Users that are interested in CVE-2024-4040-SSTI-LFI-PoC are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• Stuub / CVE-2024-32640-SQLI-MuraCMS

  View on GitHub
  CVE-2024-32640 | Automated SQLi Exploitation PoC
  ☆78May 16, 2024Updated last year
• Stuub / CVE-2024-31848-PoC

  View on GitHub
  PoC for Exploiting CVE-2024-31848/49/50/51 - File Path Traversal
  ☆18May 7, 2024Updated last year
• seed1337 / CVE-2024-24919-POC

  View on GitHub
  ☆47May 31, 2024Updated last year
• Stuub / RCity-CVE-2024-27198

  View on GitHub
  CVE-2024-27198 & CVE-2024-27199 PoC - RCE, Admin Account Creation, Enum Users, Server Information
  ☆34Jul 19, 2024Updated last year
• sinsinology / CVE-2024-4358

  View on GitHub
  Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)
  ☆78Jun 6, 2024Updated last year
• GPUs on demand by Runpod - Special Offer Available • Ad
  Run AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
• airbus-cert / CVE-2024-4040

  View on GitHub
  Scanner for CVE-2024-4040
  ☆51May 17, 2024Updated last year
• Stuub / CVE-2024-29895-CactiRCE-PoC

  View on GitHub
  CVE-2024-29895 PoC - Exploiting remote command execution in Cacti servers using the 1.3.X DEV branch builds
  ☆23May 15, 2024Updated last year
• Stuub / CVE-2024-28995

  View on GitHub
  CVE-2024-28955 Exploitation PoC
  ☆34Jul 1, 2024Updated last year
• NorthernXploit / pdf-exploit

  View on GitHub
  POC Pdf-exploit builder on C#
  ☆13Mar 1, 2024Updated 2 years ago
• Chocapikk / CVE-2024-34102

  View on GitHub
  CosmicSting (CVE-2024-34102)
  ☆48Sep 5, 2024Updated last year
• watchtowrlabs / watchTowr-vs-progress-moveit_CVE-2024-5806

  View on GitHub
  Exploit for the CVE-2024-5806
  ☆45Jun 24, 2024Updated last year
• ellord0xd / POC

  View on GitHub
  ☆12Jul 4, 2024Updated last year
• johnk3r / nuclei-templates

  View on GitHub
  Community curated list of templates for the nuclei engine to find security vulnerabilities.
  ☆26Apr 10, 2026Updated last week
• bigb0x / CVE-2024-36401

  View on GitHub
  POC for CVE-2024-36401. This POC will attempt to establish a reverse shell from the vlun targets.
  ☆35Jul 4, 2024Updated last year
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• securelayer7 / CVE-2024-38856_Scanner

  View on GitHub
  Apache OFBiz RCE Scanner & Exploit (CVE-2024-38856)
  ☆50Oct 2, 2024Updated last year
• RandomRobbieBF / nuclei-drupal-sa

  View on GitHub
  Nuclei templates for drupal vulns... far from perfect
  ☆19Jan 9, 2025Updated last year
• ZephrFish / CVE-2024-4577-PHP-RCE

  View on GitHub
  PHP RCE PoC for CVE-2024-4577 written in bash, go, python and a nuclei template
  ☆29Dec 7, 2025Updated 4 months ago
• horizon3ai / CVE-2023-34992

  View on GitHub
  CVE-2023-34992: Fortinet FortiSIEM Command Injection Proof of Concept Exploit
  ☆27May 21, 2024Updated last year
• W01fh4cker / CVE-2020-0688-GUI

  View on GitHub
  GUI Exploit Tool for CVE-2020-0688(Microsoft Exchange default MachineKeySection deserialize vulnerability)
  ☆16May 9, 2024Updated last year
• Sk1dr0wz / CVE-2024-4358_Mass_Exploit

  View on GitHub
  ☆26Jun 5, 2024Updated last year
• shubham-rooter / Xss-automation

  View on GitHub
  ☆11Apr 8, 2024Updated 2 years ago
• Chocapikk / CVE-2024-27198

  View on GitHub
  Proof of Concept for Authentication Bypass in JetBrains TeamCity Pre-2023.11.4
  ☆36Mar 5, 2024Updated 2 years ago
• Zeyad-Azima / CVE-2024-27348

  View on GitHub
  Apache HugeGraph Server RCE Scanner ( CVE-2024-27348 )
  ☆61Jun 8, 2024Updated last year
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• W01fh4cker / CVE-2024-21683-RCE

  View on GitHub
  CVE-2024-21683 Confluence Post Auth RCE
  ☆127May 27, 2024Updated last year
• Chocapikk / CVE-2024-25600

  View on GitHub
  Unauthenticated Remote Code Execution – Bricks <= 1.9.6
  ☆180Feb 25, 2024Updated 2 years ago
• W01fh4cker / CVE-2024-3400-RCE-Scan

  View on GitHub
  CVE-2024-3400-RCE
  ☆89Apr 22, 2024Updated last year
• 0xRahim / Argus

  View on GitHub
  Argus is used to test for Blind XSS and SSRF vulnerbilities or any sort of OOB detection
  ☆14Nov 1, 2024Updated last year
• bigb0x / CVE-2024-28995

  View on GitHub
  CVE-2024-28995 POC Vulnerability Scanner
  ☆14Jun 15, 2024Updated last year
• Laburity / CVE-2022-31814

  View on GitHub
  Updated Exploit - pfBlockerNG <= 2.1.4_26 Unauth RCE (CVE-2022-31814)
  ☆23Jul 23, 2024Updated last year
• bigb0x / CVE-2024-40348

  View on GitHub
  POC for CVE-2024-40348. Will attempt to read /etc/passwd from target
  ☆32Jul 21, 2024Updated last year
• Malayke / CVE-2023-37582_EXPLOIT

  View on GitHub
  Apache RocketMQ Arbitrary File Write Vulnerability Exploit
  ☆45Jul 19, 2023Updated 2 years ago
• pwnengine / Demise

  View on GitHub
  Demise is Golang malware that uses Discord for communication.
  ☆13Oct 23, 2024Updated last year
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• lfillaz / CVE-2024-2997

  View on GitHub
  The tool helps in quickly identifying vulnerabilities by examining a comprehensive list of potential paths on a website, making it useful…
  ☆11Mar 24, 2025Updated last year
• bigb0x / OpenSSH-Scanner

  View on GitHub
  OpenSSH Vulnerabilities Scanner: Bulk Scanning Tool for 21 different OpenSSH CVEs.
  ☆14Apr 29, 2025Updated 11 months ago
• mqst / gouge

  View on GitHub
  Gouge is a simple Burp extension to extract or gouge all URLs which are seen in JS files as you visit different websites/webpages in Burp…
  ☆29Jul 21, 2024Updated last year
• RedSiege / Delta-Encoder

  View on GitHub
  ☆18Jun 25, 2024Updated last year
• 11whoami99 / CVE-2024-4577

  View on GitHub
  POC & $BASH script for CVE-2024-4577
  ☆43Jun 9, 2024Updated last year
• EN5R / SubCortex

  View on GitHub
  SubCortex is a fast and efficient tool for passive subdomain enumeration. It aggregates subdomain data from multiple APIs, helping penetr…
  ☆16Jul 10, 2025Updated 9 months ago
• H4cker-Nafeed / Nafeed-Broken-Link

  View on GitHub
  Nafeed-Broken-Link: A Python tool designed to check for broken social media links on a given domain. This script crawls all accessible pa…
  ☆66Aug 15, 2024Updated last year