blipzip / cve-2022-31692View external linksLinks
A project demonstrating an app that is vulnerable to Spring Security authorization bypass CVE-2022-31692
☆35Nov 7, 2022Updated 3 years ago
Alternatives and similar repositories for cve-2022-31692
Users that are interested in cve-2022-31692 are comparing it to the libraries listed below
Sorting:
- Dubbo反序列化测试工具☆14Feb 21, 2020Updated 5 years ago
- Memory Webshell for Spring Web - 适用于 Spring Web 的内存马☆25Jan 18, 2024Updated 2 years ago
- Log4j_dos_CVE-2021-45105☆13Dec 19, 2021Updated 4 years ago
- Oracle WebLogic Server 12.1.3.0.0 / 12.2.1.3.0 / 12.2.1.4.0 / 14.1.1.0.0 Local File Inclusion☆27Jan 25, 2022Updated 4 years ago
- Detects attempts and successful exploitation of CVE-2022-26809☆33Sep 16, 2024Updated last year
- Apache APISIX Remote Code Execution (CVE-2022-24112) proof of concept exploit☆13Mar 16, 2022Updated 3 years ago
- 子域名爆破,增加了智能爬虫功能☆70Mar 22, 2024Updated last year
- CVE-2020-2551 POC to use in Internet☆22May 26, 2020Updated 5 years ago
- ☆34Sep 19, 2022Updated 3 years ago
- Java agent without file 无文件的Java agent☆82Apr 7, 2022Updated 3 years ago
- ☆23Apr 21, 2022Updated 3 years ago
- cve-2022-34169 延伸出的Jdk Xalan的payload自动生成工具,可根据不同的Jdk生成出其所对应的xslt文件☆93Jan 17, 2023Updated 3 years ago
- ☆12Dec 16, 2022Updated 3 years ago
- Apache Superset Auth Bypass (CVE-2023-27524)☆11May 9, 2023Updated 2 years ago
- ☆95Feb 9, 2023Updated 3 years ago
- Spel-research☆26Jun 21, 2022Updated 3 years ago
- PoC for CVE-2020-8617 (BIND)☆45May 20, 2020Updated 5 years ago
- The vulnerability allowed a low-privileged user to escalate privileges to domain administrator in a default Active Directory environment …☆41May 14, 2022Updated 3 years ago
- VMware vCenter 7.0.2.00100 unauth Arbitrary File Read + SSRF + Reflected XSS☆219Dec 1, 2021Updated 4 years ago
- Java命令行文件监控小工具(代码审计)☆103Nov 29, 2021Updated 4 years ago
- Quarantine bypass and RCE vulnerability in Sketch (proof-of-concept)☆13Nov 22, 2021Updated 4 years ago
- 改造一个基于jrmp的AMF反序列化利用工具☆16Jul 7, 2022Updated 3 years ago
- ysoserial for 1nhann☆11Sep 26, 2022Updated 3 years ago
- 🐍 Python Exploit for CVE-2022-23935☆11Feb 10, 2023Updated 3 years ago
- Proof Of Concept code for OctoberCMS Auth Bypass CVE-2021-32648☆12Jan 14, 2022Updated 4 years ago
- 致远OA通过发送特殊请求获取管理员cookie,再通过文件上传接口上传webshell压缩文件,最后发�送解压请求获取webshell☆10Apr 11, 2021Updated 4 years ago
- 从零开始的内网渗透学习记录☆12Mar 25, 2022Updated 3 years ago
- Place for random PoCs☆18May 21, 2020Updated 5 years ago
- CVE-2022-22978 Spring-Security bypass Demo☆16Jun 2, 2022Updated 3 years ago
- CVE-2020-2546,CVE-2020-2915 CVE-2020-2801 CVE-2020-2798 CVE-2020-2883 CVE-2020-2884 CVE-2020-2950 WebLogic T3 payload exploit poc pyth…☆133Mar 5, 2023Updated 2 years ago
- Weblogic RCE with IIOP☆80Jan 18, 2020Updated 6 years ago
- JDBC Connection URL Attack☆438Sep 10, 2021Updated 4 years ago
- 记录各语言、框架中危险的sink,个人代码审计、漏洞研究使用。☆117Dec 30, 2021Updated 4 years ago
- Apache Dubbo Hessian2 CVE-2021-43297 demo☆46Jan 18, 2022Updated 4 years ago
- 利用chrome扩展 dump 浏览器cookie https://saucer-man.com/information_security/787.html☆15Sep 9, 2021Updated 4 years ago
- 从github爬取路径然后生成字典用来爆破,针对利用开源github搭建的网站的路径提取☆27Aug 20, 2022Updated 3 years ago
- ☆30Nov 1, 2022Updated 3 years ago
- WebLogic vulnerability exploration from beginner to expert.☆157Apr 27, 2023Updated 2 years ago
- 一些结合第三方组件的Fastjson POC,在1.2.48以后版本中陆续被添加至黑名单。☆56Oct 29, 2019Updated 6 years ago