jakabakos/Apache-OFBiz-Authentication-Bypass external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

jakabakos/Apache-OFBiz-Authentication-Bypass

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/jakabakos/Apache-OFBiz-Authentication-Bypass)

Close

jakabakos / Apache-OFBiz-Authentication-BypassView on GitHubMore

• External links
• Readme badge

This repo is a PoC with to exploit CVE-2023-51467 and CVE-2023-49070 preauth RCE vulnerabilities found in Apache OFBiz.

☆74Mar 24, 2024Updated 2 years ago

Alternatives and similar repositories for Apache-OFBiz-Authentication-Bypass

Users that are interested in Apache-OFBiz-Authentication-Bypass are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• jakabakos / CVE-2017-9096-iText-XXE

  View on GitHub
  ☆13May 18, 2022Updated 4 years ago
• bAuh0lz / CVE-2023-0297_Pre-auth_RCE_in_pyLoad

  View on GitHub
  CVE-2023-0297: The Story of Finding Pre-auth RCE in pyLoad
  ☆28Jan 14, 2023Updated 3 years ago
• dix0nym / CVE-2015-6967

  View on GitHub
  Nibbleblog 4.0.3 - Arbitrary File Upload (CVE-2015-6967)
  ☆15Feb 25, 2021Updated 5 years ago
• g1vi / CVE-2023-2640-CVE-2023-32629

  View on GitHub
  GameOver(lay) Ubuntu Privilege Escalation
  ☆134Oct 9, 2023Updated 2 years ago
• jakabakos / CVE-2023-36884-MS-Office-HTML-RCE

  View on GitHub
  MS Office and Windows HTML RCE (CVE-2023-36884) - PoC and exploit
  ☆41Nov 2, 2023Updated 2 years ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• Acceis / exploit-CVE-2023-23752

  View on GitHub
  Joomla! < 4.2.8 - Unauthenticated information disclosure
  ☆93Dec 27, 2023Updated 2 years ago
• K3ysTr0K3R / CVE-2023-51467-EXPLOIT

  View on GitHub
  A PoC exploit for CVE-2023-51467 - Apache OFBiz Authentication Bypass
  ☆12Dec 31, 2023Updated 2 years ago
• beishanxueyuan / BChecks

  View on GitHub
  burp suite插件
  ☆14Jul 9, 2023Updated 2 years ago
• jakabakos / CVE-2023-36664-Ghostscript-command-injection

  View on GitHub
  Ghostscript command injection vulnerability PoC (CVE-2023-36664)
  ☆130Sep 7, 2023Updated 2 years ago
• AbdullahRizwan101 / Vulnerable-Machine

  View on GitHub
  Making your own CTF
  ☆26Jan 5, 2021Updated 5 years ago
• evkl1d / CVE-2023-46604

  View on GitHub
  ☆40Nov 6, 2023Updated 2 years ago
• me2nuk / CVE-2022-22963

  View on GitHub
  Spring Cloud Function Vulnerable Application / CVE-2022-22963
  ☆19Apr 1, 2022Updated 4 years ago
• AiGptCode / Rapid-Url

  View on GitHub
  retrieve comprehensive information about a website, including its title, last modified date, DNS information, subdomains, firewall names,…
  ☆16Mar 24, 2024Updated 2 years ago
• AnataarXVI / Werkzeug-Cracker

  View on GitHub
  Werkzeug password cracker
  ☆20Nov 14, 2024Updated last year
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• shamo0 / CVE-2023-38646-PoC

  View on GitHub
  Metabase Pre-auth RCE
  ☆12Aug 3, 2023Updated 2 years ago
• padsalatushal / CVE-2011-2523

  View on GitHub
  Python exploit for vsftpd 2.3.4 - Backdoor Command Execution
  ☆16Jan 8, 2023Updated 3 years ago
• R-s0n / OSWE-Methodology

  View on GitHub
  Blank methodology sheet for the OSWE exam
  ☆13Dec 17, 2021Updated 4 years ago
• adhikara13 / CVE-2022-4510-WalkingPath

  View on GitHub
  A Python script for generating exploits targeting CVE-2022-4510 RCE Binwalk. It supports SSH, command execution, and reverse shell option…
  ☆14Jun 27, 2023Updated 2 years ago
• elweth-sec / CVE-2023-2255

  View on GitHub
  CVE-2023-2255 Libre Office
  ☆65Jul 10, 2023Updated 2 years ago
• ZERODETECTION / Havoc_Demon_API_Hashing

  View on GitHub
  Rehashing APIs to prevent hash based detection
  ☆14Jan 7, 2025Updated last year
• CyberOne-TeamARES / FallOfSudo

  View on GitHub
  Pwning Sudo Rules
  ☆30Mar 3, 2022Updated 4 years ago
• h0ussni / pwnloris

  View on GitHub
  ☆28Sep 7, 2025Updated 8 months ago
• jakabakos / CVE-2023-50164-Apache-Struts-RCE

  View on GitHub
  A critical security vulnerability, identified as CVE-2023-50164 (CVE: 9.8) was found in Apache Struts, allowing attackers to manipulate f…
  ☆86Nov 3, 2025Updated 6 months ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• diego-tella / CVE-2023-1326-PoC

  View on GitHub
  A proof of concept for CVE-2023–1326 in apport-cli 2.26.0
  ☆21Dec 6, 2023Updated 2 years ago
• IamLucif3r / Go-Hash-Matcher

  View on GitHub
  A simple password cracker written in Go, designed to search for a specific hashed password in a wordlist.
  ☆13Feb 23, 2024Updated 2 years ago
• 0x20c / CVE-2024-23692-EXP

  View on GitHub
  CVE-2024-23692 Exploit
  ☆13Jun 18, 2024Updated last year
• vin01 / poc-proxycommand-vulnerable-v2

  View on GitHub
  Proof of conept to exploit vulnerable proxycommand configurations on ssh clients
  ☆19Dec 21, 2023Updated 2 years ago
• 0x584A / oscp-notes

  View on GitHub
  目前通过自学已经取得 OSCP（Offensive Security Certified Professional）证书，本项目用于记录、分享、交流。
  ☆11Aug 16, 2022Updated 3 years ago
• 0xTriboulet / Cycotic

  View on GitHub
  A python polymorphic engine for C programs
  ☆11Dec 8, 2023Updated 2 years ago
• rodrigoAMF / competitive-programming

  View on GitHub
  Repositório com materiais para competições de programação
  ☆10Oct 3, 2019Updated 6 years ago
• gh-ost00 / JS-Scanner

  View on GitHub
  The powerfull Extract and Scanner Javascript urls (Upgrade Deeper search)
  ☆21Nov 7, 2024Updated last year
• jephk9 / oscp-jewels

  View on GitHub
  Gitbook: OSCP-Jewels
  ☆12Oct 19, 2021Updated 4 years ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• UncleJ4ck / CVE-2021-41091

  View on GitHub
  POC for CVE-2021-41091
  ☆66May 20, 2023Updated 3 years ago
• RedSiege / ProxmarkWrapper

  View on GitHub
  A wrapper around the Proxmark3 client that will alert the user of specific events
  ☆30Dec 13, 2020Updated 5 years ago
• nuts7 / CVE-2023-27372

  View on GitHub
  SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. The fixed versions…
  ☆68Oct 13, 2024Updated last year
• J0ey17 / CVE-2022-22963_Reverse-Shell-Exploit

  View on GitHub
  CVE-2022-22963 is a vulnerability in the Spring Cloud Function Framework for Java that allows remote code execution. This python script w…
  ☆24Mar 18, 2023Updated 3 years ago
• z3rObyte / CVE-2024-23334-PoC

  View on GitHub
  A proof of concept of the path traversal vulnerability in the python AioHTTP library =< 3.9.1
  ☆20Mar 19, 2024Updated 2 years ago
• gh-ost00 / CVE-2024-1071-SQL-Injection

  View on GitHub
  Proof of concept : CVE-2024-1071: WordPress Vulnerability Exploited
  ☆23Aug 30, 2024Updated last year
• plackyhacker / ps-encoder

  View on GitHub
  A very simple python script to encode and decode PowerShell one-liners.
  ☆25Feb 13, 2022Updated 4 years ago