febinrev / tinyfilemanager-2.4.3-exploitLinks
A Path traversal vulnerability in the file upload functionality in tinyfilemanager.php in Tiny File Manager Project's Tiny File Manager <= 2.4.6 allows remote attackers with valid user accounts to upload malicious PHP files to the webroot and achieve code execution on the target server.
☆13Updated 2 years ago
Alternatives and similar repositories for tinyfilemanager-2.4.3-exploit
Users that are interested in tinyfilemanager-2.4.3-exploit are comparing it to the libraries listed below
Sorting:
- Root shell PoC for CVE-2021-3156☆71Updated 5 years ago
- SMTP user enumeration via VRFY, EXPN and RCPT with clever timeout, retry and reconnect functionality.☆164Updated last year
- Joomla login bruteforce☆101Updated last year
- Squid Pivoting Open Port Scanner☆95Updated last year
- Aspx reverse shell☆119Updated 6 years ago
- Static binaries, removing any required dependencies from the operating system. Gziped files availabe to download via curl onto your targ…☆81Updated 3 years ago
- SSTI Payload Generator☆92Updated 3 years ago
- Enumerate / Dump Docker Registry☆181Updated last year
- A wordlist repository with human-curated and reviewed content.☆122Updated 2 years ago
- A Tool for Domain Flyovers☆126Updated last year
- OpenSSH 2.3 < 7.7 - Username Enumeration☆43Updated 2 years ago
- Multi-threaded, IPv6 aware, wordlists/single-user username enumeration via CVE-2018-15473☆111Updated last year
- Local File Inclusion discovery and exploitation tool☆333Updated last year
- Exploiting CVE-2021-44228 in Unifi Network Application for remote code execution and more.☆164Updated 2 years ago
- The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.☆103Updated 6 months ago
- This repo contains scripts to query dehashed.com and crack the returned hashes which will then save all cleartext passwords and hashes to…☆182Updated last year
- Study guide and command sheet for Offensive Security PEN-210 course (Offensive Security Wireless Pentester - OSWP)☆105Updated 2 years ago
- ☆124Updated 3 years ago
- A simple NodeJS WebSocket WebApp vulnerable to blind SQL injection☆71Updated 4 years ago
- Joomla! < 4.2.8 - Unauthenticated information disclosure☆92Updated 2 years ago
- Helper script for spawning a minimal Ubuntu 16.04 container ready for building kernel exploits (~4.x)☆159Updated last year
- Simple HTTP listener for security testing☆121Updated last year
- A python based minimal DNS server to test/verify DNS rebinding attacks☆70Updated 2 years ago
- ImageMagick LFI PoC [CVE-2022-44268]☆52Updated 2 years ago
- several list of simple and obfuscate PHP shell☆192Updated 3 years ago
- ☆54Updated last year
- Get a reverse shell using PostgreSQL☆20Updated last year
- Python script that converts Grafana hash digests to PBKDF2_HMAC_SHA256 format in order to facilitate password cracking using Hashcat.☆26Updated 4 years ago
- This repo is a PoC with to exploit CVE-2023-51467 and CVE-2023-49070 preauth RCE vulnerabilities found in Apache OFBiz.☆72Updated last year
- Python exploit code for CVE-2021-4034 (pwnkit)☆170Updated 4 years ago