hakaioffsec/CVE-2025-49113-exploit external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

hakaioffsec/CVE-2025-49113-exploit

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/hakaioffsec/CVE-2025-49113-exploit)

Close

hakaioffsec / CVE-2025-49113-exploitView on GitHubMore

• External links
• Readme badge

Proof of Concept demonstrating Remote Code Execution through insecure deserialization in Roundcube (CVE-2025-49113).

☆90Jun 6, 2025Updated last year

Alternatives and similar repositories for CVE-2025-49113-exploit

Users that are interested in CVE-2025-49113-exploit are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• ajdumanhug / CVE-2023-46818

  View on GitHub
  CVE-2023-46818 Python3 Exploit for ISPConfig <= 3.2.11 (language_edit.php) PHP Code Injection Vulnerability
  ☆15Apr 16, 2025Updated last year
• s1null / Sharpmssqluser

  View on GitHub
  C#快速添加删除mssql用户小工具
  ☆21Aug 30, 2025Updated 9 months ago
• 0xyassine / CVE-2023-40028

  View on GitHub
  ☆13Mar 23, 2024Updated 2 years ago
• fearsoff-org / CVE-2025-49113

  View on GitHub
  ☆104Jun 6, 2025Updated last year
• roughiz / Webmin-1.910-Exploit-Script

  View on GitHub
  Webmin 1.910 - Remote Code Execution Using Python Script
  ☆11Feb 6, 2024Updated 2 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• MuhammadWaseem29 / CVE-2025-29927-POC

  View on GitHub
  Authorization Bypass in Next.js Middleware
  ☆10Mar 23, 2025Updated last year
• P4x1s / CVE-2024-23897

  View on GitHub
  CVE-2024-23897 jenkins-cli
  ☆15Jan 27, 2024Updated 2 years ago
• FalconForceTeam / bof-winrm-plugin-jump

  View on GitHub
  ☆36Jan 23, 2025Updated last year
• Teach2Breach / phantom_persist_rs

  View on GitHub
  Rust implementation of phantom persistence technique documented in https://blog.phantomsec.tools/phantom-persistence
  ☆65Jun 23, 2025Updated 11 months ago
• so1icitx / CVE-2024-25600

  View on GitHub
  Unauthenticated RCE exploit for CVE-2024-25600 in WordPress Bricks Builder <= 1.9.6. Executes arbitrary code remotely.
  ☆13Apr 5, 2025Updated last year
• ECSC2024 / ECSC2024-CTF-AD

  View on GitHub
  Attack/Defense services for #ECSC2024 held in Turin, Italy from 8th to 11th October 2024
  ☆14Oct 24, 2024Updated last year
• Rysess / NFSExtractor

  View on GitHub
  Extract NFS files from wireshark capture (pcap)
  ☆28Aug 5, 2024Updated last year
• BridgerAlderson / Zabbix-CVE-2024-42327-SQL-Injection-RCE

  View on GitHub
  Zabbix CVE-2024-42327 PoC
  ☆47Jan 3, 2025Updated last year
• TheCyberGeek / CVE-2025-24367-Cacti-PoC

  View on GitHub
  Proof of Concept for CVE-2025-24367
  ☆38Dec 8, 2025Updated 6 months ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• casp3r0x0 / PolymorphicSignature

  View on GitHub
  A C#-implemented malware that dynamically modifies its own hash upon each execution to evade detection.
  ☆17Feb 3, 2025Updated last year
• Y1LD1R1M-1337 / Limesurvey-RCE

  View on GitHub
  LimeSurvey Authenticated RCE
  ☆24Jul 16, 2023Updated 2 years ago
• decoder-it / impacket-partial-mic

  View on GitHub
  Impacket with --remove-mic-partial
  ☆45Jan 8, 2026Updated 5 months ago
• DarkenCode / PoC

  View on GitHub
  PoC collection
  ☆13Oct 1, 2020Updated 5 years ago
• 0xthirteen / WMI_Proc_Dump

  View on GitHub
  Dump processes over WMI with MSFT_MTProcess
  ☆85Feb 13, 2026Updated 4 months ago
• nikn0laty / Exploit-for-Searchor-2.4.0-Arbitrary-CMD-Injection

  View on GitHub
  Reverse Shell Exploit for Searchor <= 2.4.2 (2.4.0)
  ☆18May 27, 2023Updated 3 years ago
• I3IT / Detect.Remote.ShadowSnapshot.Dump

  View on GitHub
  Detect Remote Local Credentials Dumping using a Shadow Snapshot
  ☆32Jan 27, 2025Updated last year
• adeljck / Hikvision_Info_Leak

  View on GitHub
  Hikivision Infomation Leak Vuln With Redis GetShell
  ☆17Nov 12, 2024Updated last year
• rkamath13 / i2c-sensor-laptop-access

  View on GitHub
  ☆10Apr 2, 2016Updated 10 years ago
• Open source password manager - Proton Pass • Ad
  Securely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
• fxrstor / ThrottleStopPoC

  View on GitHub
  CVE-2025-7771: Arbitrary physical memory and I/O port read/write via ThrottleStop driver
  ☆17Sep 5, 2025Updated 9 months ago
• PurpleNewNew / bs5

  View on GitHub
  suo5的二开改进，一款高性能，代码标准的 HTTP 代理隧道工具
  ☆80Sep 5, 2025Updated 9 months ago
• 0xDTC / Ghost-5.58-Arbitrary-File-Read-CVE-2023-40028

  View on GitHub
  CVE-2023-40028 affects Ghost, an open source content management system, where versions prior to 5.59.1 allow authenticated users to uploa…
  ☆13Jan 7, 2025Updated last year
• nikn0laty / Exploit-for-Dolibarr-17.0.0-CVE-2023-30253

  View on GitHub
  Reverse Shell POC exploit for Dolibarr <= 17.0.0 (CVE-2023-30253), PHP Code Injection
  ☆41May 28, 2024Updated 2 years ago
• BridgerAlderson / CVE-2025-27591-PoC

  View on GitHub
  CVE-2025-27591 is a privilege escalation vulnerability that affected the Below service before version 0.9.0
  ☆31Jul 16, 2025Updated 11 months ago
• v1k1ngfr / exploits-rconfig

  View on GitHub
  Exploit codes for rconfig <= 3.9.4
  ☆11Mar 17, 2020Updated 6 years ago
• MrAle98 / ATDCM64a-LPE

  View on GitHub
  ☆23Jan 15, 2025Updated last year
• xforcered / Being-A-Good-CLR-Host

  View on GitHub
  ☆140Jan 16, 2025Updated last year
• 0xjpuff / reverse_shell_splunk

  View on GitHub
  A simple splunk package for obtaining reverse shells on both Windows and most *nix systems.
  ☆146Aug 20, 2018Updated 7 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• vardyh / libdt

  View on GitHub
  libdt is part of the "Huorong eXtendible Stream Scan Engine" project copyright by Huorong Borui (Beijing) Technology Co., Ltd.
  ☆14Aug 17, 2015Updated 10 years ago
• aaaademo / evil-mysql-server

  View on GitHub
  ☆25Mar 1, 2025Updated last year
• purplestormctf / purplestorm-TTPs

  View on GitHub
  A collection of commands, tools, techniques and procedures of the purplestorm ctf team.
  ☆14Mar 20, 2025Updated last year
• AIex-3 / confluence-hack

  View on GitHub
  CVE-2023-22515
  ☆52Nov 10, 2023Updated 2 years ago
• vvswift / HVNC-windows-remote-toolkit

  View on GitHub
  Remote administration toolkit for windows, based on Hidden VNC: file manager, keystroke logger, powershell
  ☆42Nov 23, 2025Updated 6 months ago
• jschicht / StegoMft

  View on GitHub
  PoC for hiding data within $MFT
  ☆12Aug 14, 2014Updated 11 years ago
• hacefresko / CVE-2025-40634

  View on GitHub
  Exploit for stack-based buffer overflow found in the conn-indicator binary in the TP-Link Archer AX50 router
  ☆31Oct 16, 2025Updated 8 months ago