This repo is a PoC with to exploit CVE-2023-51467 and CVE-2023-49070 preauth RCE vulnerabilities found in Apache OFBiz.
☆72Mar 24, 2024Updated last year
Alternatives and similar repositories for Apache-OFBiz-Authentication-Bypass
Users that are interested in Apache-OFBiz-Authentication-Bypass are comparing it to the libraries listed below
Sorting:
- Nibbleblog 4.0.3 - Arbitrary File Upload (CVE-2015-6967)☆15Feb 25, 2021Updated 5 years ago
- CVE-2023-0297: The Story of Finding Pre-auth RCE in pyLoad☆28Jan 14, 2023Updated 3 years ago
- Installs and adjusts Pentest tools.☆10Oct 19, 2022Updated 3 years ago
- GameOver(lay) Ubuntu Privilege Escalation☆132Oct 9, 2023Updated 2 years ago
- A PoC exploit for CVE-2023-51467 - Apache OFBiz Authentication Bypass☆12Dec 31, 2023Updated 2 years ago
- burp suite插件☆13Jul 9, 2023Updated 2 years ago
- Werkzeug password cracker☆19Nov 14, 2024Updated last year
- ☆13May 18, 2022Updated 3 years ago
- Making your own CTF☆26Jan 5, 2021Updated 5 years ago
- Blank methodology sheet for the OSWE exam☆13Dec 17, 2021Updated 4 years ago
- ☆40Nov 6, 2023Updated 2 years ago
- retrieve comprehensive information about a website, including its title, last modified date, DNS information, subdomains, firewall names,…☆16Mar 24, 2024Updated last year
- Joomla! < 4.2.8 - Unauthenticated information disclosure☆92Dec 27, 2023Updated 2 years ago
- A Python script for generating exploits targeting CVE-2022-4510 RCE Binwalk. It supports SSH, command execution, and reverse shell option…☆14Jun 27, 2023Updated 2 years ago
- Python exploit for vsftpd 2.3.4 - Backdoor Command Execution☆15Jan 8, 2023Updated 3 years ago
- CVE-2022-25765 pdfkit <0.8.6 command injection.☆15Dec 21, 2022Updated 3 years ago
- Metabase Pre-auth RCE☆12Aug 3, 2023Updated 2 years ago
- ☆21Sep 12, 2025Updated 5 months ago
- Proof of conept to exploit vulnerable proxycommand configurations on ssh clients☆19Dec 21, 2023Updated 2 years ago
- The powerfull Extract and Scanner Javascript urls (Upgrade Deeper search)☆21Nov 7, 2024Updated last year
- Collection of useful pre-compiled .NET binaries or other executables for penetration testing Windows Active Directory environments☆248Mar 2, 2026Updated last week
- Proof of concept : CVE-2024-1071: WordPress Vulnerability Exploited☆22Aug 30, 2024Updated last year
- Spring Cloud Function Vulnerable Application / CVE-2022-22963☆19Apr 1, 2022Updated 3 years ago
- A proof of concept of the path traversal vulnerability in the python AioHTTP library =< 3.9.1☆20Mar 19, 2024Updated last year
- Joomla login bruteforce☆107Jul 18, 2024Updated last year
- wpDiscuz 7.0.4 Remote Code Execution☆18Jun 15, 2021Updated 4 years ago
- A proof of concept for CVE-2023–1326 in apport-cli 2.26.0☆21Dec 6, 2023Updated 2 years ago
- ☆21Aug 3, 2022Updated 3 years ago
- This tool allows you to find ssti vulnerability with ease!☆21Sep 3, 2022Updated 3 years ago
- ☆59Dec 15, 2023Updated 2 years ago
- This is a proof of concept for CVE-2024-20356, a Command Injection vulnerability in Cisco's CIMC.☆55Apr 18, 2024Updated last year
- A Collection of Wordlists for Penetration Testing☆35Dec 13, 2025Updated 2 months ago
- CVE-2022-22963 is a vulnerability in the Spring Cloud Function Framework for Java that allows remote code execution. This python script w…☆24Mar 18, 2023Updated 2 years ago
- ImageMagick LFI PoC [CVE-2022-44268]☆52Nov 6, 2023Updated 2 years ago
- Pwning Sudo Rules☆29Mar 3, 2022Updated 4 years ago
- POCs for CVE-2025-50154 and CVE-2025-59214, zero day vulnerabilities on windows file explorer disclosing NTLMv2-SSP without user interact…☆52Oct 16, 2025Updated 4 months ago
- Aspx reverse shell☆120Feb 4, 2020Updated 6 years ago
- ☆28Sep 11, 2023Updated 2 years ago
- An improvement and a different approach to Mockingjay Self-Injection.☆35May 21, 2024Updated last year