codewhitesec / ColdFusionPwn

Related projects: ⓘ

• jas502n / CVE-2019-0232
  Apache Tomcat Remote Code Execution on Windows - CGI-BIN
  ☆75Updated 5 years ago
• veracode-research / actuator-testbed
  A vulnerable application exposing Spring Boot Actuators
  ☆123Updated 5 years ago
• Jumbo-WJB / CVE-2020-0688
  CVE-2020-0688 - Exchange
  ☆67Updated 4 years ago
• jas502n / CVE-2019-11580
  CVE-2019-11580 Atlassian Crowd and Crowd Data Center RCE
  ☆105Updated 5 years ago
• LandGrey / flink-unauth-rce
  exploit Apache Flink Web Dashboard unauth rce on right way by python2 scripts
  ☆88Updated 4 years ago
• random-robbie / cve-2020-0688
  cve-2020-0688
  ☆161Updated 4 years ago
• kiks7 / rusty_joomla_rce
  Rusty Joomla RCE Exploit
  ☆70Updated last year
• jas502n / solr_rce
  Apache Solr RCE via Velocity template
  ☆106Updated 4 years ago
• jas502n / CVE-2019-0193
  Apache Solr DataImport Handler RCE
  ☆88Updated 5 years ago
• mishmashclone / GrrrDog-Java-Deserialization-Cheat-Sheet
  https://github.com/GrrrDog/Java-Deserialization-Cheat-Sheet
  ☆48Updated 3 years ago
• Y4er / CVE-2020-14645
  Weblogic CVE-2020-14645 UniversalExtractor JNDI injection getDatabaseMetaData()
  ☆79Updated 4 years ago
• jas502n / CVE-2019-12409
  Apache Solr RCE (ENABLE_REMOTE_JMX_OPTS="true")
  ☆102Updated 4 years ago
• fnmsd / zimbra_poc
  Zimbra XXE+SSRF+UPLOAD Poc
  ☆59Updated 5 years ago
• GreyOrder / CVE-2021-26855
  ☆130Updated this week
• hvqzao / burp-wildcard
  Burp extension intended to compact Burp extension tabs by hijacking them to own tab.
  ☆126Updated 3 years ago
• jas502n / CVE-2019-7238
  Nexus Repository Manager 3 Remote Code Execution without authentication < 3.15.0
  ☆80Updated 5 years ago
• IdealDreamLast / CVE-2020-9484
  用Kali 2.0复现Apache Tomcat Session反序列化代码执行漏洞
  ☆52Updated 4 years ago
• jas502n / gitlab-SSRF-redis-RCE
  GitLab 11.4.7 SSRF配合redis远程执行代码
  ☆123Updated 5 years ago
• aRe00t / rce-over-spark
  Remote Command Execution Over Spark
  ☆96Updated 6 years ago
• pimps / CVE-2019-2725
  WebLogic Insecure Deserialization - CVE-2019-2725 payload builder & exploit
  ☆46Updated 4 years ago
• mpgn / CVE-2019-7238
  🐱‍💻 Poc of CVE-2019-7238 - Nexus Repository Manager 3 Remote Code Execution 🐱‍💻
  ☆149Updated 5 years ago
• ezelf / f5_cookieLeaks
  Decode the cookies set by balancer F5, and disclousure all pool ip
  ☆77Updated 4 years ago
• jas502n / SpringBoot_Actuator_RCE
  SpringBoot_Actuator_RCE
  ☆97Updated 4 years ago
• PortSwigger / reissue-request-scripter
  ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)
  ☆29Updated 2 years ago
• jiangsir404 / Xss-Sql-Fuzz
  burpsuite 插件对GP所有参数(过滤特殊参数)一键自动添加xss sql payload 进行fuzz
  ☆60Updated 5 years ago
• jas502n / CVE-2019-16278
  Directory transversal to remote code execution
  ☆69Updated 4 years ago
• Bort-Millipede / WLT3Serial
  Native Java-based deserialization exploit for WebLogic T3 (and T3S) listeners.
  ☆35Updated 4 years ago
• masahiro331 / CVE-2019-10758
  ☆111Updated 4 years ago
• m3ssap0 / spring-break_cve-2017-8046
  This is a Java program that exploits Spring Break vulnerability (CVE-2017-8046).
  ☆17Updated 3 years ago
• spaceraccoon / spring-boot-actuator-h2-rce
  Sample Spring Boot App Demonstrating RCE via Exposed env Actuator and H2 Database
  ☆103Updated 4 years ago