jakabakos/Apache-OFBiz-Authentication-Bypass external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

jakabakos/Apache-OFBiz-Authentication-Bypass

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/jakabakos/Apache-OFBiz-Authentication-Bypass)

Close

jakabakos / Apache-OFBiz-Authentication-BypassView on GitHubMore

• External links
• Readme badge

This repo is a PoC with to exploit CVE-2023-51467 and CVE-2023-49070 preauth RCE vulnerabilities found in Apache OFBiz.

☆72Mar 24, 2024Updated 2 years ago

Alternatives and similar repositories for Apache-OFBiz-Authentication-Bypass

Users that are interested in Apache-OFBiz-Authentication-Bypass are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• bAuh0lz / CVE-2023-0297_Pre-auth_RCE_in_pyLoad

  View on GitHub
  CVE-2023-0297: The Story of Finding Pre-auth RCE in pyLoad
  ☆28Jan 14, 2023Updated 3 years ago
• dix0nym / CVE-2015-6967

  View on GitHub
  Nibbleblog 4.0.3 - Arbitrary File Upload (CVE-2015-6967)
  ☆15Feb 25, 2021Updated 5 years ago
• g1vi / CVE-2023-2640-CVE-2023-32629

  View on GitHub
  GameOver(lay) Ubuntu Privilege Escalation
  ☆133Oct 9, 2023Updated 2 years ago
• jakabakos / CVE-2023-27524-Apache-Superset-Auth-Bypass-and-RCE

  View on GitHub
  ☆28Sep 11, 2023Updated 2 years ago
• jakabakos / CVE-2023-36884-MS-Office-HTML-RCE

  View on GitHub
  MS Office and Windows HTML RCE (CVE-2023-36884) - PoC and exploit
  ☆41Nov 2, 2023Updated 2 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• Acceis / exploit-CVE-2023-23752

  View on GitHub
  Joomla! < 4.2.8 - Unauthenticated information disclosure
  ☆92Dec 27, 2023Updated 2 years ago
• beishanxueyuan / BChecks

  View on GitHub
  burp suite插件
  ☆13Jul 9, 2023Updated 2 years ago
• jakabakos / CVE-2023-36664-Ghostscript-command-injection

  View on GitHub
  Ghostscript command injection vulnerability PoC (CVE-2023-36664)
  ☆130Sep 7, 2023Updated 2 years ago
• ByCh4n / Delebetor

  View on GitHub
  Installs and adjusts Pentest tools.
  ☆10Oct 19, 2022Updated 3 years ago
• shamo0 / PDFkit-CMD-Injection

  View on GitHub
  CVE-2022-25765 pdfkit <0.8.6 command injection.
  ☆15Dec 21, 2022Updated 3 years ago
• AnataarXVI / Werkzeug-Cracker

  View on GitHub
  Werkzeug password cracker
  ☆19Nov 14, 2024Updated last year
• shamo0 / CVE-2023-38646-PoC

  View on GitHub
  Metabase Pre-auth RCE
  ☆12Aug 3, 2023Updated 2 years ago
• padsalatushal / CVE-2011-2523

  View on GitHub
  Python exploit for vsftpd 2.3.4 - Backdoor Command Execution
  ☆16Jan 8, 2023Updated 3 years ago
• R-s0n / OSWE-Methodology

  View on GitHub
  Blank methodology sheet for the OSWE exam
  ☆13Dec 17, 2021Updated 4 years ago
• Wordpress hosting with auto-scaling - Free Trial • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• adhikara13 / CVE-2022-4510-WalkingPath

  View on GitHub
  A Python script for generating exploits targeting CVE-2022-4510 RCE Binwalk. It supports SSH, command execution, and reverse shell option…
  ☆14Jun 27, 2023Updated 2 years ago
• elweth-sec / CVE-2023-2255

  View on GitHub
  CVE-2023-2255 Libre Office
  ☆64Jul 10, 2023Updated 2 years ago
• CyberOne-TeamARES / FallOfSudo

  View on GitHub
  Pwning Sudo Rules
  ☆29Mar 3, 2022Updated 4 years ago
• jakabakos / CVE-2023-50164-Apache-Struts-RCE

  View on GitHub
  A critical security vulnerability, identified as CVE-2023-50164 (CVE: 9.8) was found in Apache Struts, allowing attackers to manipulate f…
  ☆86Nov 3, 2025Updated 5 months ago
• diego-tella / CVE-2023-1326-PoC

  View on GitHub
  A proof of concept for CVE-2023–1326 in apport-cli 2.26.0
  ☆21Dec 6, 2023Updated 2 years ago
• 0x20c / CVE-2024-23692-EXP

  View on GitHub
  CVE-2024-23692 Exploit
  ☆13Jun 18, 2024Updated last year
• vin01 / poc-proxycommand-vulnerable-v2

  View on GitHub
  Proof of conept to exploit vulnerable proxycommand configurations on ssh clients
  ☆19Dec 21, 2023Updated 2 years ago
• 0xTriboulet / Cycotic

  View on GitHub
  A python polymorphic engine for C programs
  ☆11Dec 8, 2023Updated 2 years ago
• ImuSpirit / CVE-2023-51467-Exploit

  View on GitHub
  Apache Ofbiz CVE-2023-51467 图形化漏洞利用工具
  ☆39Jan 6, 2024Updated 2 years ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• gh-ost00 / JS-Scanner

  View on GitHub
  The powerfull Extract and Scanner Javascript urls (Upgrade Deeper search)
  ☆21Nov 7, 2024Updated last year
• FredBrave / CVE-2022-46169-CACTI-1.2.22

  View on GitHub
  This is a exploit of CVE-2022-46169 to cacti 1.2.22. This exploit allows through an RCE to obtain a reverse shell on your computer.
  ☆41Sep 11, 2023Updated 2 years ago
• RedSiege / ProxmarkWrapper

  View on GitHub
  A wrapper around the Proxmark3 client that will alert the user of specific events
  ☆30Dec 13, 2020Updated 5 years ago
• J0ey17 / CVE-2022-22963_Reverse-Shell-Exploit

  View on GitHub
  CVE-2022-22963 is a vulnerability in the Spring Cloud Function Framework for Java that allows remote code execution. This python script w…
  ☆23Mar 18, 2023Updated 3 years ago
• gh-ost00 / CVE-2024-1071-SQL-Injection

  View on GitHub
  Proof of concept : CVE-2024-1071: WordPress Vulnerability Exploited
  ☆22Aug 30, 2024Updated last year
• faiyazahmad07 / SSTI_DETECTOR

  View on GitHub
  This tool allows you to find ssti vulnerability with ease!
  ☆22Sep 3, 2022Updated 3 years ago
• plackyhacker / ps-encoder

  View on GitHub
  A very simple python script to encode and decode PowerShell one-liners.
  ☆25Feb 13, 2022Updated 4 years ago
• thalysonz / pentest-flutter-guide

  View on GitHub
  Repository aimed at helping to perform pentests on flutter applications
  ☆18Jul 10, 2024Updated last year
• vdohney / keepass-password-dumper

  View on GitHub
  Original PoC for CVE-2023-32784
  ☆647Aug 17, 2023Updated 2 years ago
• Wordpress hosting with auto-scaling - Free Trial • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• H454NSec / CVE-2023-42793

  View on GitHub
  JetBrains TeamCity Authentication Bypass CVE-2023-42793 Exploit
  ☆43May 22, 2024Updated last year
• voidz0r / CVE-2022-44268

  View on GitHub
  A PoC for the CVE-2022-44268 - ImageMagick arbitrary file read
  ☆217Mar 24, 2025Updated last year
• nettitude / CVE-2024-20356

  View on GitHub
  This is a proof of concept for CVE-2024-20356, a Command Injection vulnerability in Cisco's CIMC.
  ☆55Apr 18, 2024Updated 2 years ago
• Sybil-Scan / imagemagick-lfi-poc

  View on GitHub
  ImageMagick LFI PoC [CVE-2022-44268]
  ☆52Nov 6, 2023Updated 2 years ago
• redrays-io / SAP-Penetration-Testing

  View on GitHub
  SAP Penetration Testing: A Comprehensive Analysis of SAP Security Issues
  ☆41Nov 23, 2023Updated 2 years ago
• six2dez / postleaksNg

  View on GitHub
  Search for sensitive data in Postman public library. Original work from https://github.com/cosad3s/postleaks
  ☆31Feb 13, 2026Updated 2 months ago
• abdoghazy2015 / ofbiz-CVE-2023-49070-RCE-POC

  View on GitHub
  ☆59Dec 15, 2023Updated 2 years ago