codewhitesec/ColdFusionPwn external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

codewhitesec/ColdFusionPwn

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/codewhitesec/ColdFusionPwn)

Close

codewhitesec / ColdFusionPwnView on GitHubMore

• External links
• Readme badge

Exploitation Tool for CVE-2017-3066 targeting Adobe Coldfusion 11/12

☆96Oct 18, 2022Updated 3 years ago

Alternatives and similar repositories for ColdFusionPwn

Users that are interested in ColdFusionPwn are comparing it to the libraries listed below

• 5up3rc / weblogic_cmd

  View on GitHub
  weblogic t3 deserialization rce
  ☆268Jul 13, 2017Updated 8 years ago
• skelsec / windows_ad_dos_poc

  View on GitHub
  PoC code for crashing windows active directory
  ☆35Sep 19, 2018Updated 7 years ago
• mackleadmire / CVE-2018-3191-Rce-Exploit

  View on GitHub
  ☆17Oct 25, 2018Updated 7 years ago
• r3dxpl0it / Apache-Superset-Remote-Code-Execution-PoC-CVE-2018-8021

  View on GitHub
  CVE-2018-8021 Proof-Of-Concept and Exploit
  ☆106Dec 3, 2018Updated 7 years ago
• matthiaskaiser / jmet

  View on GitHub
  Java Message Exploitation Tool
  ☆511Jul 6, 2022Updated 3 years ago
• blazeinfosec / CVE-2017-10366_peoplesoft

  View on GitHub
  CVE-2017-10366: Oracle PeopleSoft 8.54, 8.55, 8.56 Java deserialization exploit
  ☆25Sep 4, 2018Updated 7 years ago
• iSafeBlue / fastjson-autotype-bypass-demo

  View on GitHub
  fastjson 1.2.68 版本 autotype bypass
  ☆142Jun 17, 2022Updated 3 years ago
• mogwaisec / mjet

  View on GitHub
  Mogwai Java Management Extensions (JMX) Exploitation Toolkit
  ☆174Jul 21, 2016Updated 9 years ago
• coffeehb / portscan

  View on GitHub
  可能有一些你没见过的端口扫描脚本
  ☆12Nov 28, 2018Updated 7 years ago
• erpscanteam / CVE-2018-2380

  View on GitHub
  PoC of Remote Command Execution via Log injection on SAP NetWeaver AS JAVA CRM
  ☆52Mar 14, 2018Updated 7 years ago
• immunIT / CVE-2018-11759

  View on GitHub
  Proof of concept showing how to exploit the CVE-2018-11759
  ☆40Dec 11, 2018Updated 7 years ago
• mbechler / serjs

  View on GitHub
  A Java serializer in JavaScript
  ☆80May 21, 2018Updated 7 years ago
• tdy218 / ysoserial-cve-2018-2628

  View on GitHub
  Some codes for bypassing Oracle WebLogic CVE-2018-2628 patch
  ☆114May 21, 2018Updated 7 years ago
• NickstaDB / BaRMIe

  View on GitHub
  Java RMI enumeration and attack tool.
  ☆745Sep 28, 2017Updated 8 years ago
• neargle / Go-Get-RCE-CVE-2018-6574-POC

  View on GitHub
  CVE-2018-6574 POC : golang 'go get' remote command execution during source code build
  ☆24Jan 14, 2022Updated 4 years ago
• exp-db / CommonServiceDefaultPort

  View on GitHub
  常用系统服务默认端口列表
  ☆13Apr 25, 2017Updated 8 years ago
• syriusbughunt / CVE-2018-14667

  View on GitHub
  All about CVE-2018-14667; From what it is to how to successfully exploit it.
  ☆50Nov 30, 2018Updated 7 years ago
• QAX-A-Team / SerialWriter

  View on GitHub
  SerialWriter is an incomplete implementation of Java serialization for study of Java deserialization vulnerabilities.
  ☆104Feb 28, 2018Updated 8 years ago
• quentinhardy / jndiat

  View on GitHub
  JNDI Attacking Tool
  ☆246Jul 11, 2022Updated 3 years ago
• DownWithUp / CVE-2018-16712

  View on GitHub
  PoC Code for CVE-2018-16712 (exploit by MmMapIoSpace)
  ☆25Dec 1, 2018Updated 7 years ago
• jamieparfet / Apache-OFBiz-XXE

  View on GitHub
  XXE injection (file disclosure) exploit for Apache OFBiz < 16.11.04
  ☆13Oct 16, 2018Updated 7 years ago
• airman604 / jdbc-backdoor

  View on GitHub
  A fake JDBC driver that allows OS command execution.
  ☆125Oct 2, 2022Updated 3 years ago
• pwmoore / CorelanExploitTutorials

  View on GitHub
  My solutions in Python for Corelan's Exploit Writing Tutorials
  ☆13Jun 2, 2016Updated 9 years ago
• pyn3rd / CVE-2018-3245

  View on GitHub
  CVE-2018-3245-PoC
  ☆172Jul 13, 2021Updated 4 years ago
• k8gege / ZimbraExploit

  View on GitHub
  Zimbra邮件系统漏洞 XXE/RCE/SSRF/Upload GetShell Exploit 1. (CVE-2019-9621 Zimbra<8.8.11 XXE GetShell Exploit)
  ☆78Feb 22, 2023Updated 3 years ago
• brianwrf / S2-053-CVE-2017-12611

  View on GitHub
  A simple script for exploit RCE for Struts 2 S2-053(CVE-2017-12611)
  ☆37Sep 8, 2017Updated 8 years ago
• pwntester / dotnet-deserialization-scanner

  View on GitHub
  .NET Deserialization Passive Scanner
  ☆46Mar 23, 2018Updated 7 years ago
• slowmistio / CVE-2018-3191

  View on GitHub
  CVE-2018-3191 反弹shell
  ☆16Oct 23, 2018Updated 7 years ago
• allyshka / exploits

  View on GitHub
  ☆82Apr 20, 2021Updated 4 years ago
• quentinhardy / scriptsAndExploits

  View on GitHub
  Some scripts and exploits
  ☆148Jul 9, 2018Updated 7 years ago
• staaldraad / troopers19

  View on GitHub
  All the content from my Troopers 19 talk
  ☆12Mar 20, 2019Updated 6 years ago
• 0xa-saline / Logpara

  View on GitHub
  一个对常见的web日志进行解析处理的粗糙DEMO
  ☆21Jun 3, 2018Updated 7 years ago
• theLSA / ueditor-getshell

  View on GitHub
  ueditor .net getshell
  ☆97Aug 27, 2018Updated 7 years ago
• aurainfosec / xss_payloads

  View on GitHub
  XSS payloads for edge cases
  ☆34Nov 13, 2018Updated 7 years ago
• pyn3rd / CVE-2018-2893

  View on GitHub
  CVE-2018-2893-PoC
  ☆104Oct 27, 2018Updated 7 years ago
• welk1n / JNDI-Injection-Bypass

  View on GitHub
  Some payloads of JNDI Injection in JDK 1.8.0_191+
  ☆484Dec 9, 2020Updated 5 years ago
• securifera / CVE-2018-6546-Exploit

  View on GitHub
  CVE-2018-6546-Exploit
  ☆41Apr 15, 2018Updated 7 years ago
• aedoo / CVE-2018-2628-MultiThreading

  View on GitHub
  WebLogic WLS核心组件反序列化漏洞多线程批量检测脚本 CVE-2018-2628-MultiThreading
  ☆15Apr 19, 2018Updated 7 years ago
• pwntester / JRE8u20_RCE_Gadget

  View on GitHub
  JRE8u20_RCE_Gadget
  ☆255Jul 1, 2016Updated 9 years ago