dn9uy3n / Check-WP-CVE-2020-35489Links
The (WordPress) website test script can be exploited for Unlimited File Upload via CVE-2020-35489
☆31Updated last year
Alternatives and similar repositories for Check-WP-CVE-2020-35489
Users that are interested in Check-WP-CVE-2020-35489 are comparing it to the libraries listed below
Sorting:
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆77Updated last year
- A simple automation tool to detect lfi, rce and ssti vulnerability☆55Updated 3 years ago
- This Python script automates the process of identifying vulnerabilities in Firebase configurations extracted from APK files.☆45Updated 2 months ago
- PoC for XSS in org.webjars:swagger-ui [3.14.2, 3.36.2]☆53Updated 2 years ago
- This repository contains proof of concept for zero days and CVEs that were found by Omar Hashem through Security Research☆44Updated 2 years ago
- Swagger UI >=3.14.1 < 3.38.0 XSS payload☆21Updated last year
- Resolvers updated daily for reconftw☆47Updated 2 years ago
- A demo PHP application used to exercise SQL injection techniques in a safe, local Docker environment☆44Updated last year
- Web cache poisoning vulnerability scanner.☆71Updated 3 years ago
- Advanced Tool To Scan And Exploit Local File Inclusion (LFI) Vulnerabilities☆32Updated 2 years ago
- Supertruder but better☆32Updated 2 years ago
- Your subdomains are free for the taking - no API key, no mistaking! 🕺☆35Updated 2 years ago
- Bug Bounty Recon Automation Script -- Scan AWS IP Range Certs for Matching FQDN☆25Updated 3 years ago
- Some of the gf patterns which i use☆43Updated 3 years ago
- IIS shortname scanner + bruteforce☆52Updated last year
- Tool for testing reflections in the HTTP responses☆60Updated 2 years ago
- ☆34Updated 2 years ago
- Log4jScanner is a Log4j Related CVEs Scanner, Designed to Help Penetration Testers to Perform Black Box Testing on given subdomains.☆51Updated 3 years ago
- Authorization-Nuclei-Templates☆39Updated 9 months ago
- A tool to guess the rest of the shortnames provided by vulnerable IIS instances.☆41Updated last year
- It grep subdomains, email/username, build custom wordlist etc from gau results☆48Updated 2 years ago
- ☆79Updated 2 years ago
- This tool allows you to find ssti vulnerability with ease!☆20Updated 2 years ago
- A powerful bash script for massive XSS scanning leveraging Brute Logic's KNOXSS API☆73Updated 5 months ago
- A simple plugin to export JS files from one or multiple targets☆43Updated last year
- An MS Sharepoint and Frontpage Auditing Tool☆49Updated 7 months ago
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.☆44Updated last year
- XSS Bypass☆29Updated last year
- A collection of Bug Bounty Tips collected from GitHub to all bug bounty hunters☆28Updated last year
- Enumerate old versions of robots.txt paths using Wayback Machine for content discovery☆50Updated last year