ambionics / magento-exploits
Exploits for Magento 2.3.0 and lower
☆145Updated 6 years ago
Alternatives and similar repositories for magento-exploits:
Users that are interested in magento-exploits are comparing it to the libraries listed below
- Scan a Magento site for information☆444Updated 5 years ago
- Proof of Concept code of the Shoplift code☆39Updated 3 years ago
- A Burp Extension designed to identify argument injection vulnerabilities.☆121Updated 6 years ago
- Burp extension to detect alias traversal via NGINX misconfiguration at scale.☆259Updated 3 years ago
- (PoC) Python version of CVE-2019-11043 exploit by neex☆145Updated 5 years ago
- Atlassian JIRA Template injection vulnerability RCE☆93Updated 5 years ago
- CVE-2017-9506 - SSRF☆188Updated 3 years ago
- Local File Inclusion Exploitation Tool (mirror)☆125Updated 8 years ago
- GodOfWar - Malicious Java WAR builder with built-in payloads☆122Updated 6 years ago
- CVE-2018-7600 Drupal RCE☆116Updated 7 years ago
- POC Exploit for Apache Tomcat 7.0.x CVE-2017-12615 PUT JSP vulnerability.☆111Updated 2 years ago
- CVE-2019-19781 - Remote Code Execution on Citrix ADC Netscaler exploit☆156Updated 4 years ago
- PoC for CVE-2018-15133 (Laravel unserialize vulnerability)☆251Updated last year
- Toolset for detecting reflected xss in websites☆113Updated 6 years ago
- HTTP.ninja☆151Updated last year
- Java serialization brute force attack tool.☆123Updated 7 years ago
- An Out-of-Band XXE server for retrieving file contents over FTP.☆181Updated 4 years ago
- CVE-2018-17246 - Kibana LFI < 6.4.3 & 5.6.13☆63Updated 5 years ago
- Endpoint for Out-of-Band Exfiltration (DNS & HTTP)☆92Updated 6 years ago
- Script to automate PUT HTTP method exploitation to get shell☆125Updated 4 years ago
- Jackson Rce For CVE-2019-12384☆98Updated 5 years ago
- A Burp Extension to test applications for vulnerability to the Web Cache Deception attack☆139Updated 4 years ago
- A web application for generating custom XSS payloads☆77Updated 5 years ago
- Exploit for the Post-Auth RCE vulnerability in Pulse Secure Connect☆132Updated 3 years ago
- Bypassing WAF by abusing SSL/TLS Ciphers☆315Updated 3 years ago
- 💀Proof-of-Concept for CVE-2018-7600 Drupal SA-CORE-2018-002☆351Updated 6 years ago
- CVE-2018-13382☆148Updated 5 years ago
- Bypassing disabled exec functions in PHP (c) CRLF☆401Updated 4 years ago
- A Burp extension for generic extraction and reuse of data within HTTP requests and responses.☆92Updated 3 years ago
- PrestaShop (1.6.x <= 1.6.1.23 or 1.7.x <= 1.7.4.4) Back Office Remote Code Execution (CVE-2018-19126)☆40Updated 6 years ago