jakabakos / Apache-OFBiz-Authentication-BypassView external linksLinks
This repo is a PoC with to exploit CVE-2023-51467 and CVE-2023-49070 preauth RCE vulnerabilities found in Apache OFBiz.
☆72Mar 24, 2024Updated last year
Alternatives and similar repositories for Apache-OFBiz-Authentication-Bypass
Users that are interested in Apache-OFBiz-Authentication-Bypass are comparing it to the libraries listed below
Sorting:
- CVE-2023-0297: The Story of Finding Pre-auth RCE in pyLoad☆28Jan 14, 2023Updated 3 years ago
- Installs and adjusts Pentest tools.☆10Oct 19, 2022Updated 3 years ago
- GameOver(lay) Ubuntu Privilege Escalation☆132Oct 9, 2023Updated 2 years ago
- burp suite插件☆13Jul 9, 2023Updated 2 years ago
- Repository aimed at helping to perform pentests on flutter applications☆17Jul 10, 2024Updated last year
- ☆13May 18, 2022Updated 3 years ago
- Werkzeug password cracker☆18Nov 14, 2024Updated last year
- Making your own CTF☆26Jan 5, 2021Updated 5 years ago
- ☆39Nov 6, 2023Updated 2 years ago
- retrieve comprehensive information about a website, including its title, last modified date, DNS information, subdomains, firewall names,…☆16Mar 24, 2024Updated last year
- Joomla! < 4.2.8 - Unauthenticated information disclosure☆92Dec 27, 2023Updated 2 years ago
- CVE-2023-2255 Libre Office☆63Jul 10, 2023Updated 2 years ago
- Metabase Pre-auth RCE☆12Aug 3, 2023Updated 2 years ago
- ☆21Sep 12, 2025Updated 5 months ago
- Proof of conept to exploit vulnerable proxycommand configurations on ssh clients☆19Dec 21, 2023Updated 2 years ago
- Collection of useful pre-compiled .NET binaries or other executables for penetration testing Windows Active Directory environments☆240Mar 6, 2025Updated 11 months ago
- A proof of concept of the path traversal vulnerability in the python AioHTTP library =< 3.9.1☆20Mar 19, 2024Updated last year
- Joomla login bruteforce☆101Jul 18, 2024Updated last year
- ☆21Aug 3, 2022Updated 3 years ago
- Automatically deploy Nemesis☆21Jun 14, 2024Updated last year
- wpDiscuz 7.0.4 Remote Code Execution☆19Jun 15, 2021Updated 4 years ago
- This is a proof of concept for CVE-2024-20356, a Command Injection vulnerability in Cisco's CIMC.☆55Apr 18, 2024Updated last year
- ☆59Dec 15, 2023Updated 2 years ago
- CVE-2022-22963 is a vulnerability in the Spring Cloud Function Framework for Java that allows remote code execution. This python script w…☆24Mar 18, 2023Updated 2 years ago
- A Collection of Wordlists for Penetration Testing☆32Dec 13, 2025Updated 2 months ago
- Simple PoC for demonstrating Race Conditions on Websockets☆55Sep 14, 2023Updated 2 years ago
- ImageMagick LFI PoC [CVE-2022-44268]☆52Nov 6, 2023Updated 2 years ago
- Pwning Sudo Rules☆29Mar 3, 2022Updated 3 years ago
- POCs for CVE-2025-50154 and CVE-2025-59214, zero day vulnerabilities on windows file explorer disclosing NTLMv2-SSP without user interact…☆52Oct 16, 2025Updated 3 months ago
- Demo of a malicious python package that will run code upon pip download or install☆29Sep 10, 2022Updated 3 years ago
- ☆27Sep 11, 2023Updated 2 years ago
- Aspx reverse shell☆119Feb 4, 2020Updated 6 years ago
- An improvement and a different approach to Mockingjay Self-Injection.☆35May 21, 2024Updated last year
- Create your own certification authority with server certificates in a full automated way☆29Aug 29, 2025Updated 5 months ago
- A couple of different scripts, made to automate attacks against NoSQL databases.☆66Mar 13, 2024Updated last year
- CVE-2024-4040 CrushFTP SSTI LFI & Auth Bypass | Full Server Takeover | Wordlist Support☆60Jul 7, 2024Updated last year
- A wrapper around the Proxmark3 client that will alert the user of specific events☆30Dec 13, 2020Updated 5 years ago
- SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. The fixed versions…☆67Oct 13, 2024Updated last year
- Contains all the required AWS Books, Code and materials for learning.☆19May 7, 2024Updated last year