h4x0r-dz / CVE-2024-3656View external linksLinks
Keycloak admin API allows low privilege users to use administrative functions
☆28Oct 12, 2024Updated last year
Alternatives and similar repositories for CVE-2024-3656
Users that are interested in CVE-2024-3656 are comparing it to the libraries listed below
Sorting:
- PoC☆12Apr 7, 2025Updated 10 months ago
- Updated Exploit - pfBlockerNG <= 2.1.4_26 Unauth RCE (CVE-2022-31814)☆23Jul 23, 2024Updated last year
- ☆13Apr 14, 2024Updated last year
- Apache HugeGraph Server Unauthenticated RCE - CVE-2024-27348 Proof of concept Exploit☆18Jun 3, 2024Updated last year
- RCE through a race condition in Apache Tomcat☆56Dec 21, 2024Updated last year
- ☆41Mar 12, 2025Updated 11 months ago
- CVE-2025-20029: Command Injection in TMSH CLI in F5 BIG-IP☆22Feb 23, 2025Updated 11 months ago
- POC - Unauthenticated RCE Flaw in Rejetto HTTP File Server - CVE-2024-23692☆43Mar 24, 2025Updated 10 months ago
- PAN-OS auth bypass + RCE☆47Nov 19, 2024Updated last year
- Unauthenticated RCE on CraftCMS when PHP `register_argc_argv` config setting is enabled☆49Dec 23, 2024Updated last year
- Exploit for Symfony CVE-2024-50340 (forked eos)☆29Nov 22, 2024Updated last year
- The magic number 0x5F3759DF in Python3 Fast Inverse SquareRoot☆12Mar 5, 2023Updated 2 years ago
- GiveWP PHP Object Injection exploit☆12Oct 1, 2024Updated last year
- Unauthenticated Remote Code Execution via Angular-Base64-Upload Library☆26Jul 12, 2025Updated 7 months ago
- Authentication Bypass Vulnerability — CVE-2024–4358 — Telerik Report Server 2024☆12Nov 26, 2024Updated last year
- ☆30Jan 16, 2026Updated last month
- This tools used for Automating finding of subdomain, and checking for alive subdomain, and gathering js files from all the subdomain and …☆22Jun 28, 2024Updated last year
- Unauthenticated Remote Code Execution – Bricks <= 1.9.6☆179Feb 25, 2024Updated last year
- CVE-2024-21893: SSRF Vulnerability in Ivanti Connect Secure☆95Feb 2, 2024Updated 2 years ago
- GitHub Entreprise Server SAML authentication bypass (CVE-2025-23369) exploit☆38Feb 8, 2025Updated last year
- LLM based autonomous agent that does online comprehensive research on any given topic☆14Sep 27, 2024Updated last year
- Create local administrators with the SAMR API (lowest-level technique). Implemented in C#, Python, Rust and Crystal☆52Jan 27, 2026Updated 3 weeks ago
- POC - CVE-2024–4956 - Nexus Repository Manager 3 Unauthenticated Path Traversal☆16Nov 26, 2024Updated last year
- Nuclei templates to run on urls☆17Sep 14, 2023Updated 2 years ago
- Network Traffic Fuzzer☆17Dec 28, 2024Updated last year
- ☆38Dec 14, 2024Updated last year
- GBounty Profiles are customizable security test definitions used by the GBounty web scanner to identify vulnerabilities in web applicatio…☆25Mar 11, 2025Updated 11 months ago
- Oracle WebLogic CVE-2022-21371☆19Aug 31, 2022Updated 3 years ago
- ☆18Jul 29, 2023Updated 2 years ago
- Exploit for Grafana arbitrary file-read and RCE (CVE-2024-9264)☆130Dec 16, 2024Updated last year
- The authentication bypass vulnerability in GitHub Enterprise Server (GHES) allows an unauthorized attacker to access an instance of GHES …☆50May 21, 2024Updated last year
- Proof of Concept Exploit for CVE-2024-9464☆45Oct 9, 2024Updated last year
- ☆73Jan 5, 2022Updated 4 years ago
- CyberPanel 2.3.6 pre-auth RCE☆40Oct 27, 2024Updated last year
- RCE on Apache Solr 8.3.1☆42May 6, 2023Updated 2 years ago
- Mnemonic Cryptography☆18Nov 11, 2022Updated 3 years ago
- MSSprinkler is a password spraying utility for organizations to test their Microsoft Online accounts from an external perspective. It emp…☆79Jan 22, 2026Updated 3 weeks ago
- A complete security assessment tool that supports common web security issues scanning and custom POC | Be sure to read the document befor…☆20Sep 27, 2024Updated last year
- Top 400 passwords as per HaveIBeenPwned☆22Oct 14, 2024Updated last year