absholi7ly/POC-CVE-2025-24813 external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

absholi7ly/POC-CVE-2025-24813

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/absholi7ly/POC-CVE-2025-24813)

Close

absholi7ly / POC-CVE-2025-24813View on GitHubMore

• External links
• Readme badge

his repository contains an automated Proof of Concept (PoC) script for exploiting **CVE-2025-24813**, a Remote Code Execution (RCE) vulnerability in Apache Tomcat. The vulnerability allows an attacker to upload a malicious serialized payload to the server, leading to arbitrary code execution via deserialization when specific conditions are met.

☆186Mar 14, 2025Updated last year

Alternatives and similar repositories for POC-CVE-2025-24813

Users that are interested in POC-CVE-2025-24813 are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• iSee857 / CVE-2025-24813-PoC

  View on GitHub
  Apache Tomcat 远程代码执行漏洞批量检测脚本(CVE-2025-24813)
  ☆95Apr 2, 2025Updated last year
• akamai / CVE-2025-27636-Apache-Camel-PoC

  View on GitHub
  ☆42Mar 12, 2025Updated last year
• 0x6rss / CVE-2025-24071_PoC

  View on GitHub
  CVE-2025-24071: NTLM Hash Leak via RAR/ZIP Extraction and .library-ms File
  ☆403Mar 20, 2025Updated last year
• absholi7ly / CVE-2025-0282-Ivanti-exploit

  View on GitHub
  CVE-2025-0282 is a critical vulnerability found in Ivanti Connect Secure, allowing Remote Command Execution (RCE) through a buffer overfl…
  ☆53Jan 11, 2025Updated last year
• DEVCORE-Wargame / HITCON-2024

  View on GitHub
  HITCON 2024 x DEVCORE Wargame
  ☆31Aug 30, 2024Updated last year
• Bare Metal GPUs on DigitalOcean Gradient AI • Ad
  Purpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
• sandumjacob / IngressNightmare-POCs

  View on GitHub
  CVE-2025-1974
  ☆90Apr 2, 2025Updated last year
• godylockz / CVE-2024-23897

  View on GitHub
  POC for CVE-2024-23897 Jenkins File-Read
  ☆39Nov 20, 2025Updated 4 months ago
• mbadanoiu / CVE-2025-31644

  View on GitHub
  CVE-2025-31644: Command Injection in Appliance mode in F5 BIG-IP
  ☆24May 11, 2025Updated 11 months ago
• qzy0x / cve-2025-24813_poc

  View on GitHub
  cve-2025-24813验证脚本
  ☆11Mar 14, 2025Updated last year
• SafeBreach-Labs / CVE-2024-49113

  View on GitHub
  LdapNightmare is a PoC tool that tests a vulnerable Windows Server against CVE-2024-49113
  ☆515Jan 2, 2025Updated last year
• Wh04m1001 / CVE-2025-48799

  View on GitHub
  ☆270Jul 8, 2025Updated 9 months ago
• masa42 / CVE-2024-38819-POC

  View on GitHub
  ☆38Dec 14, 2024Updated last year
• Jimmy01240397 / CTF-Instancer

  View on GitHub
  ☆21Feb 24, 2026Updated last month
• TAM-K592 / CVE-2024-6387

  View on GitHub
  Recently, the OpenSSH maintainers released security updates to fix a critical vulnerability that could lead to unauthenticated remote cod…
  ☆13Jul 2, 2024Updated last year
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• watchtowrlabs / watchTowr-vs-SonicWall-PreAuth-RCE-Chain

  View on GitHub
  ☆19May 1, 2025Updated 11 months ago
• p33d / CVE-2024-45519

  View on GitHub
  ☆42Sep 28, 2024Updated last year
• watchtowrlabs / CVE-2024-4577

  View on GitHub
  PHP CGI Argument Injection (CVE-2024-4577) Remote Code Execution PoC
  ☆312Jun 22, 2024Updated last year
• h0pe-ay / Kernel-Pwn

  View on GitHub
  ctf kernel pwn
  ☆16Mar 21, 2024Updated 2 years ago
• Chocapikk / wpprobe

  View on GitHub
  A fast WordPress plugin enumeration tool
  ☆820Updated this week
• momika233 / Burp-Rxss-scan-TG

  View on GitHub
  ☆13Mar 6, 2025Updated last year
• ph0ebus / Tomcat-CVE-2024-50379-Poc

  View on GitHub
  RCE through a race condition in Apache Tomcat
  ☆57Dec 21, 2024Updated last year
• ThemeHackers / CVE-2025-24071

  View on GitHub
  Windows File Explorer Spoofing Vulnerability (CVE-2025-24071)
  ☆32Mar 27, 2025Updated last year
• mrk336 / CVE-2025-26686-The-TCP-IP-Flaw-That-Opens-the-Gates

  View on GitHub
  A critical RCE vulnerability in Windows TCP/IP stack (CVE-2025-26686) leaves sensitive memory unlocked, allowing remote attackers to hija…
  ☆32Sep 16, 2025Updated 7 months ago
• Serverless GPU API endpoints on Runpod - Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• rubenformation / ms-photos_NTLM_Leak

  View on GitHub
  New 0 day vulnerability allowing to leak NTLM hashes from browsers with one click
  ☆208Nov 18, 2025Updated 5 months ago
• JoshMorrison99 / url-based-nuclei-templates

  View on GitHub
  Nuclei templates to run on urls
  ☆18Sep 14, 2023Updated 2 years ago
• ynwarcs / CVE-2025-21298

  View on GitHub
  Proof of concept & details for CVE-2025-21298
  ☆198Jan 20, 2025Updated last year
• ZephrFish / CVE-2025-53770-Scanner

  View on GitHub
  ToolShell scanner - CVE-2025-53770 and detection information
  ☆18Dec 7, 2025Updated 4 months ago
• TRIKKSS / Semgrep4BurpSuite

  View on GitHub
  burpsuite extension to analyze javascript files using semgrep
  ☆12Feb 3, 2025Updated last year
• MrMax4o4 / KeysKit

  View on GitHub
  An opensource tool built to help bug bounty hunters and developers to easily/quickly find the perfect command to validate API keys
  ☆25Apr 20, 2025Updated 11 months ago
• MrAle98 / CVE-2024-49138-POC

  View on GitHub
  POC exploit for CVE-2024-49138
  ☆268Feb 14, 2025Updated last year
• hakaioffsec / IngressNightmare-PoC

  View on GitHub
  This is a PoC code to exploit the IngressNightmare vulnerabilities (CVE-2025-1097, CVE-2025-1098, CVE-2025-24514, and CVE-2025-1974).
  ☆249Mar 26, 2025Updated last year
• synacktiv / CVE-2024-43468

  View on GitHub
  ☆95Apr 7, 2026Updated last week
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• 0xbigshaq / CVE-2025-25257

  View on GitHub
  FortiWeb CVE-2025-25257 exploit
  ☆64Jul 11, 2025Updated 9 months ago
• praetorian-inc / chariot-launch-nuclei-templates

  View on GitHub
  ☆13Mar 15, 2022Updated 4 years ago
• Stuub / CVE-2024-31848-PoC

  View on GitHub
  PoC for Exploiting CVE-2024-31848/49/50/51 - File Path Traversal
  ☆18May 7, 2024Updated last year
• peass-ng / CloudPEASS

  View on GitHub
  ☆628Feb 5, 2026Updated 2 months ago
• hoefler02 / CVE-2025-21756

  View on GitHub
  Exploit for CVE-2025-21756 for Linux kernel 6.6.75. My first linux kernel exploit!
  ☆157Jun 5, 2025Updated 10 months ago
• mverschu / CVE-2025-33073

  View on GitHub
  PoC Exploit for the NTLM reflection SMB flaw.
  ☆690Feb 18, 2026Updated 2 months ago
• yoryio / CVE-2024-20767

  View on GitHub
  Exploit for CVE-2024-20767 - Adobe ColdFusion
  ☆34Dec 19, 2024Updated last year