moeinfatehi / lfi-to-rce-scenario
This repository is a Dockerized php application containing a LFI (Local File Inclusion) vulnerability which can lead to RCE (Remote Code Execution).
☆11Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for lfi-to-rce-scenario
- CVE-2024-29895 PoC - Exploiting remote command execution in Cacti servers using the 1.3.X DEV branch builds☆21Updated 5 months ago
- CVE-2024-27956 WordPress Automatic < 3.92.1 - Unauthenticated SQL Injection☆18Updated 6 months ago
- Atlassian Confluence - Remote Code Execution☆9Updated 9 months ago
- POC for CVE-2024-40348. Will attempt to read /etc/passwd from target☆28Updated 3 months ago
- Burp extension to track your current IP address. Extension focused for red teams where the attacker needs to log all used IP addresses.☆24Updated 11 months ago
- ☆13Updated last year
- An Vulnerability detection and Exploitation tool for CVE-2024-24919☆19Updated 5 months ago
- SNMP Bash Script to discover valid community strings, dump basic information, check for write permission and check for RCE.☆11Updated 6 months ago
- A complete security assessment tool that supports common web security issues scanning and custom POC | Be sure to read the document befor…☆19Updated last month
- Progress OpenEdge Authentication Bypass☆16Updated 8 months ago
- CVE-2023-38389 < Wordpress < JupiterX Core < Unauthenticated Account Takeover☆27Updated 3 months ago
- Khonsu is a powerful port scanning tool written in python that detect open ports with concurrent and accurately☆14Updated 9 months ago
- An Exploitation tool to exploit the confluence server that are vulnerable to CVE-2023-22518 Improper Authorization☆44Updated last year
- JoomSploit is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆26Updated 10 months ago
- Mass Exploit - CVE-2024-29824 - Ivanti EPM - Remote Code Execution (RCE)☆28Updated 3 months ago
- ☆13Updated 6 months ago
- ☆31Updated 2 months ago
- ☆12Updated last year
- Scanner for CVE-2023-22515 - Broken Access Control Vulnerability in Atlassian Confluence☆75Updated last year
- Enumeration & fingerprint tool☆23Updated 8 months ago
- Burp extension used to snip any header from all the requests.☆22Updated 11 months ago
- Experience the power of a PHP webshell designed to overcome the limitations of blacklisted system/exec functions.☆23Updated 3 months ago
- Basic script to generate reverse shell payloads, generally most used in ctf.☆27Updated 7 months ago
- Apache HugeGraph Server Unauthenticated RCE - CVE-2024-27348 Proof of concept Exploit☆16Updated 5 months ago
- Scanner for CVE-2023-46805 - Ivanti Connect Secure☆10Updated 3 months ago
- PrestaXSRF is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆30Updated 10 months ago
- Proof-of-Concept for CVE-2024-46538☆42Updated this week
- CVE-2024-28955 Exploitation PoC☆34Updated 4 months ago
- aiohttp LFI (CVE-2024-23334)☆22Updated 7 months ago