h4x0r-dz / CVE-2024-3656Links
Keycloak admin API allows low privilege users to use administrative functions
☆27Updated 10 months ago
Alternatives and similar repositories for CVE-2024-3656
Users that are interested in CVE-2024-3656 are comparing it to the libraries listed below
Sorting:
- Exploit for Symfony CVE-2024-50340 (forked eos)☆30Updated 9 months ago
- POC for CVE-2024-36401. This POC will attempt to establish a reverse shell from the vlun targets.☆33Updated last year
- PfSense Stored XSS lead to Arbitrary Code Execution exploit☆47Updated 7 months ago
- Updated Exploit - pfBlockerNG <= 2.1.4_26 Unauth RCE (CVE-2022-31814)☆23Updated last year
- ☆37Updated 8 months ago
- Authentication Bypass in GoAnywhere MFT☆63Updated last year
- Exploits Unauth Docker API☆41Updated 4 months ago
- A Proof-Of-Concept for the CVE-2023-43770 vulnerability.☆33Updated last year
- ☆34Updated last year
- Proof of Concept Exploit for CVE-2024-9464☆45Updated 10 months ago
- Check for CVE-2024-22024 vulnerability in Ivanti Connect Secure☆30Updated last year
- DLink DIR-846 Authenticated Remote Code Execution☆18Updated last year
- GitHub Entreprise Server SAML authentication bypass (CVE-2025-23369) exploit☆36Updated 6 months ago
- Proof of Concept for Path Traversal in Apache Struts ("CVE-2023-50164")☆57Updated last year
- Burp extension used to snip any header from all the requests.☆23Updated last year
- Contexter - A secondary context path traversal / server-side parameter pollution testing tool written in Python 3☆22Updated last year
- Proof of Concept Exploit for CVE-2024-9465☆29Updated 10 months ago
- Veeam Backup Enterprise Manager Authentication Bypass (CVE-2024-29849)☆90Updated last year
- PrestaXSRF is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆31Updated last year
- ☆24Updated 9 months ago
- CVE-2023-7028☆59Updated last year
- ☆19Updated 8 months ago
- Unauthorized Access to Metadata and User Data like CTF☆27Updated 8 months ago
- A simple mutator engine which focuses on finding unknown classes of injection vulnerabilities☆67Updated last year
- ☆44Updated last month
- Exploit for CVE-2024-5009☆13Updated last year
- RCE through a race condition in Apache Tomcat☆56Updated 8 months ago
- The authentication bypass vulnerability in GitHub Enterprise Server (GHES) allows an unauthorized attacker to access an instance of GHES …☆50Updated last year
- Nuclei template to detect Apache servers vulnerable to CVE-2024-38473☆29Updated last year
- An Vulnerability detection and Exploitation tool for CVE-2024-24919☆25Updated last year