absholi7ly / POC-CVE-2025-24813Links
his repository contains an automated Proof of Concept (PoC) script for exploiting **CVE-2025-24813**, a Remote Code Execution (RCE) vulnerability in Apache Tomcat. The vulnerability allows an attacker to upload a malicious serialized payload to the server, leading to arbitrary code execution via deserialization when specific conditions are met.
☆181Updated 10 months ago
Alternatives and similar repositories for POC-CVE-2025-24813
Users that are interested in POC-CVE-2025-24813 are comparing it to the libraries listed below
Sorting:
- Apache HTTP Server Vulnerability Testing Tool | PoC for CVE-2024-38472 , CVE-2024-39573 , CVE-2024-38477 , CVE-2024-38476 , CVE-2024-3847…☆118Updated last year
- CVE-2025-24071: NTLM Hash Leak via RAR/ZIP Extraction and .library-ms File☆391Updated 9 months ago
- Remote Unauthenticated Code Execution Vulnerability in OpenSSH server (CVE-2024-6387)☆165Updated last year
- Ghostscript command injection vulnerability PoC (CVE-2023-36664)☆130Updated 2 years ago
- GiveWP PHP Object Injection exploit☆76Updated last year
- Unauthenticated Remote Code Execution – Bricks <= 1.9.6☆177Updated last year
- CVE-2024-3400 Palo Alto OS Command Injection☆161Updated last year
- SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. The fixed versions…☆66Updated last year
- Microsoft Outlook Information Disclosure Vulnerability (leak password hash) - Expect Script POC☆156Updated last year
- POC for CVE-2021-41091☆65Updated 2 years ago
- CVE-2023-22515: Confluence Broken Access Control Exploit☆146Updated 2 months ago
- Zimbra - Remote Command Execution (CVE-2024-45519)☆134Updated 9 months ago
- SharePoint WebPart Injection Exploit Tool☆308Updated last month
- Session Hijacking Visual Exploitation☆209Updated last year
- JetBrains TeamCity Authentication Bypass CVE-2023-42793 Exploit☆45Updated last year
- ☆59Updated 2 years ago
- POC for CVE-2024-36991: This exploit will attempt to read Splunk /etc/passwd file.☆125Updated last year
- A tool designed to exploit bad implementations of decryption mechanisms in Laravel applications.☆130Updated 3 weeks ago
- GameOver(lay) Ubuntu Privilege Escalation☆131Updated 2 years ago
- ☆96Updated 7 months ago
- Just A list Of Some Multilingual XSS Payloads and other weird ones i made☆122Updated 3 months ago
- ☆82Updated 7 months ago
- ☆100Updated last year
- The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.☆105Updated 5 months ago
- CVE-2024-40725 and CVE-2024-40898, affecting Apache HTTP Server versions 2.4.0 through 2.4.61. These flaws pose significant risks to web …☆83Updated last year
- POC & $BASH script for CVE-2024-4577☆44Updated last year
- Microsoft SharePoint Server Elevation of Privilege Vulnerability☆234Updated 2 years ago
- CVE-2023-2255 Libre Office☆63Updated 2 years ago
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆70Updated 2 years ago
- A list of all Active Directory machines from HackTheBox☆200Updated last month