Alternatives and similar repositories for xss_payloads

Users that are interested in xss_payloads are comparing it to the libraries listed below

• vah13 / Oracle-BI-bugs
  ☆34Updated 5 years ago
• jra89 / CVE-2019-19634
  This is a filter bypass exploit that results in arbitrary file upload and remote code execution in class.upload.php <= 2.0.4
  ☆36Updated 5 years ago
• jas502n / CVE-2019-8451
  Jira未授权SSRF漏洞
  ☆31Updated 5 years ago
• dienuet / crossdomain
  CORS checking
  ☆34Updated 6 years ago
• securifera / CVE-2019-1579
  ☆63Updated 5 years ago
• GoSecure / break-fast-serial
  A proof of concept that demonstrates asynchronous scanning for Java deserialization bugs
  ☆54Updated 8 years ago
• syriusbughunt / CVE-2018-14667
  All about CVE-2018-14667; From what it is to how to successfully exploit it.
  ☆50Updated 6 years ago
• syriusbughunt / From_JIRA_to_Shell
  Learn how to get a reverse shell from JIRA application server
  ☆24Updated 6 years ago
• blazeinfosec / CVE-2017-10366_peoplesoft
  CVE-2017-10366: Oracle PeopleSoft 8.54, 8.55, 8.56 Java deserialization exploit
  ☆25Updated 6 years ago
• wsfengfan / CVE-2020-10199-10204
  CVE-2020-10199 CVE-2020-10204 Python POC
  ☆19Updated 5 years ago
• irsl / apache-openoffice-rce-via-uno-links
  ☆35Updated 2 years ago
• newtonguass / ADPenLab
  ☆32Updated 4 years ago
• maxpl0it / HTTPFuzz
  A fast generative fuzzer for HTTP
  ☆17Updated 6 years ago
• mpgn / CVE-2019-9580
  CVE-2019-9580 - StackStorm: exploiting CORS misconfiguration (null origin) to gain RCE
  ☆32Updated 6 years ago
• blazeinfosec / ssrf-ntlm
  Proof of concept written in Python to show that in some situations a SSRF vulnerability can be used to steal NTLMv1/v2 hashes.
  ☆57Updated 7 years ago
• mpgn / CVE-2018-19276
  CVE-2018-19276 - OpenMRS Insecure Object Deserialization RCE
  ☆16Updated 6 years ago
• v-p-b / cve-2019-12750
  sploit
  ☆68Updated 5 years ago
• vah13 / BurpCRLFPlugin
  Another plugin for CRLF vulnerability detection
  ☆26Updated 8 years ago
• ramshazar / orangetsai-springboot-actuator-poc
  ☆27Updated 4 years ago
• jas502n / Jboss_JMXInvokerServlet_Deserialization_RCE
  Jboss_JMXInvokerServlet_Deserialization_RCE
  ☆21Updated 5 years ago
• hhc0null / GhostRule
  Some exploits to bypass Safer Mode in Ghostscript
  ☆16Updated 4 years ago
• erpscanteam / CVE-2018-2380
  PoC of Remote Command Execution via Log injection on SAP NetWeaver AS JAVA CRM
  ☆52Updated 7 years ago
• debasishm89 / dotNetFuzz
  A quick and dirty .NET "Deserialize_*" fuzzer based on James Forshaw's (@tiraniddo) DotNetToJScript.
  ☆42Updated 6 years ago
• cybersecmoo / brownie-tub
  A Flexible Web Shell Client, Built on Electron
  ☆13Updated 2 years ago
• neargle / Go-Get-RCE-CVE-2018-6574-POC
  CVE-2018-6574 POC : golang 'go get' remote command execution during source code build
  ☆24Updated 3 years ago
• pwntester / SpringBreaker
  Exploit PoC for Spring RCE issue (CVE-2011-2894)
  ☆43Updated last year
• TheCyberGeek / CVE-2019-19268
  New Found 0-days!
  ☆36Updated 5 years ago
• 1337g / CVE-2017-10271
  CVE-2017-10271 WEBLOGIC RCE (TESTED)
  ☆38Updated 7 years ago
• jackadamson / CVE-2021-26700
  RCE in NPM VSCode Extension
  ☆20Updated 4 years ago
• 0ang3el / Hibernate-Injection-Study
  Study about HQL injection exploitation.
  ☆51Updated 8 years ago