Stuub / CVE-2024-4040-SSTI-LFI-PoC
CVE-2024-4040 CrushFTP SSTI LFI & Auth Bypass | Full Server Takeover | Wordlist Support
☆57Updated 8 months ago
Alternatives and similar repositories for CVE-2024-4040-SSTI-LFI-PoC:
Users that are interested in CVE-2024-4040-SSTI-LFI-PoC are comparing it to the libraries listed below
- CVE-2024-32640 | Automated SQLi Exploitation PoC☆63Updated 10 months ago
- ☆48Updated 9 months ago
- Bypass-Four03 is a powerful bash tool designed to help testers bypass HTTP 403 forbidden errors through various path and header manipulat…☆135Updated 5 months ago
- Apache HugeGraph Server RCE Scanner ( CVE-2024-27348 )☆60Updated 9 months ago
- SubCerts is a simple tool that uses certificate transparency logs (via crt.sh) to extract subdomains of a given domain.☆71Updated 2 months ago
- Xploitra is a powerful reverse shell payload generator for educational and security testing. It offers customizable payloads with advance…☆60Updated 5 months ago
- ☆118Updated last year
- Community curated list of templates for the nuclei engine to find security vulnerabilities.☆26Updated last week
- 🪄 XSSDynaGen is a tool designed to analyze URLs with parameters, identify the characters allowed by the server, and generate advanced XS…☆51Updated 2 months ago
- ZeusLeak is a browser extension that automatically detects leaked secrets and credentials in code while browsing.☆34Updated 3 weeks ago
- IDOR Forge is an advanced and versatile tool designed to detect Insecure Direct Object Reference (IDOR) vulnerabilities in web applicatio…☆89Updated 2 weeks ago
- ☆64Updated 7 months ago
- Probuster : A Python based Web Application Penetration testing tool for Information Gathering⚡.☆58Updated 4 months ago
- Apache HTTP Server Vulnerability Testing Tool | PoC for CVE-2024-38472 , CVE-2024-39573 , CVE-2024-38477 , CVE-2024-38476 , CVE-2024-3847…☆86Updated 5 months ago
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…☆87Updated 7 months ago
- VICIdial Unauthenticated SQLi to RCE Exploit (CVE-2024-8503 and CVE-2024-8504)☆39Updated 6 months ago
- Dnsbruter is a powerful tool designed to perform active subdomain enumeration and discovery. It uses DNS resolution to efficiently brutef…☆108Updated 3 months ago
- Parse FFUF results in GUI with option to sort based by response code , size , keyword☆94Updated 6 months ago
- Grep subdomains from web pages.☆42Updated last month
- A Powerful Recon Engine☆61Updated 4 months ago
- CVE-2024-3400-RCE☆87Updated 11 months ago
- I-Espresso is a tool that enables users to generate Portable Executable (PE) files from batch scripts. Leveraging IExpress, it demonstrat…☆75Updated 5 months ago
- Injectra is a Python-based tool for injecting custom payloads into various file types using their magic numbers. It supports file types l…☆126Updated 2 months ago
- Payload for bug bounty☆93Updated 8 months ago
- GeoServer Remote Code Execution☆78Updated 7 months ago
- A passive way to find backups/ sensitive information.☆72Updated 2 months ago
- POC for CVE-2024-36991: This exploit will attempt to read Splunk /etc/passwd file.☆118Updated 8 months ago
- Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)☆75Updated 9 months ago
- ☆51Updated 3 months ago
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆66Updated last year