gotr00t0day / CVE-2024-4040
A server side template injection vulnerability in CrushFTP in all versions before 10.7.1 and 11.1.0 on all platforms allows unauthenticated remote attackers to read files from the filesystem outside of the VFS Sandbox, bypass authentication to gain administrative access, and perform remote code execution on the server.
☆8Updated last year
Alternatives and similar repositories for CVE-2024-4040:
Users that are interested in CVE-2024-4040 are comparing it to the libraries listed below
- Take potentially dangerous PDFs, office documents, or images and convert them to safe PDFs☆12Updated 2 years ago
- An Exploitation script developed to exploit the CVE-2023-4966 bleed citrix information disclosure vulnerability☆9Updated last year
- ☆14Updated last month
- Automated enumeration for red teamers☆7Updated 2 years ago
- xdebug 2.5.5 RCE exploit☆30Updated 3 months ago
- crawl a website for links and expose all the vulnerable parameters.☆12Updated 2 years ago
- Python script that generates Visual Basic Script (VBS) stagers for executing PowerShell scripts directly from specified URLs. It provides…☆13Updated 11 months ago
- NetFuzzer is a comprehensive network security assessment tool for internal and external network components, including Host Machines, Fire…☆15Updated 3 months ago
- PoC for Exploiting CVE-2024-31848/49/50/51 - File Path Traversal☆17Updated 11 months ago
- Strumenti per Domini - Whois - IP - Data Breach - Email☆16Updated 6 months ago
- Continuous Reconnaissance and Vulnerability Scanning for Bug Bounties☆18Updated 11 months ago
- Argument injection vulnerability in PHP☆11Updated 10 months ago
- Bxss Sniper: A web application penetration testing tool for Blind XSS detection☆20Updated last year
- Exploit for the unauthenticated file upload vulnerability in WordPress's Royal Elementor Addons and Templates plugin (< 1.3.79). CVE-ID: …☆9Updated last year
- XSS payloads for exploiting Markdown syntax☆7Updated 4 years ago
- my mini collection of exploits and scripts for pentest☆11Updated 2 years ago
- Another vulnerability scanner☆19Updated last month
- This tool will resolve a list of Domains, IPs, Hosts, URLs and save the results for valid/invalid fast!☆15Updated 2 years ago
- Nuclei template for CVE-2024-23897 (Jenkins LFI Vulnerability)☆18Updated last year
- Automatic Mass Tool for check and exploiting vulnerability in CVE-2023-3076 - MStore API < 3.9.9 - Unauthenticated Privilege Escalation (…☆17Updated last year
- A small and efficient tool to find open redirect vulnerabilities.☆16Updated 3 years ago
- Hack Windows with FUD backdoor/payload, Escalates LINUX privileges, Devastate Linux, Tunnel forwarding☆15Updated 4 years ago
- The purpose of this tool is to collect all the subdomains using different subdomain finder tools and then filter out those subdomains whi…☆16Updated 2 years ago
- F5 BIG-IP Scanner scans for servers on shodan and checks to see if they are vulnerable.☆17Updated 2 years ago
- Dorkey is Dork generator For Sql Injection It includes Php Aspx And other extension Its Simple Fast And Lightweight Sqli Dork Generator☆15Updated 3 years ago
- Rockyou for web fuzzing☆14Updated 3 years ago
- An efficient tool To Find click jacking vulnerabilities in easiest way with poc☆23Updated 3 years ago
- Automated Recon Tool Installer☆16Updated 2 years ago
- ☆23Updated last year
- Trinetra is Web Crawling Tool For Bug Bounty And Web Pentesters It will Help To Spider Url's From Web And It will Gain Url Info From Web…☆9Updated 3 years ago