mpgn / CVE-2019-9580
CVE-2019-9580 - StackStorm: exploiting CORS misconfiguration (null origin) to gain RCE
☆32Updated 5 years ago
Related projects ⓘ
Alternatives and complementary repositories for CVE-2019-9580
- ☆34Updated 5 years ago
- XSS payloads for edge cases☆34Updated 5 years ago
- ☆17Updated 5 years ago
- miscellaneous security research stuff☆38Updated 5 years ago
- CVE-2017-10271 WEBLOGIC RCE (TESTED)☆37Updated 6 years ago
- CVE-2018-19276 - OpenMRS Insecure Object Deserialization RCE☆16Updated 5 years ago
- Parse X509 certificates to get the (sub)domains in it.☆28Updated 6 years ago
- This is a filter bypass exploit that results in arbitrary file upload and remote code execution in class.upload.php <= 2.0.4☆36Updated 4 years ago
- Another plugin for CRLF vulnerability detection☆26Updated 7 years ago
- All about CVE-2018-14667; From what it is to how to successfully exploit it.☆49Updated 5 years ago
- CVE-2018-6574 POC : golang 'go get' remote command execution during source code build☆24Updated 2 years ago
- Burp plugin to do random fuzzing of HTTP requests☆33Updated 7 years ago
- CVE-2020-10199 CVE-2020-10204 Python POC☆19Updated 4 years ago
- A simple scanner to find and brute force tomcat manager logins☆28Updated 4 years ago
- Study about HQL injection exploitation.☆49Updated 8 years ago
- CVE-2019-12949☆26Updated 5 years ago
- CVE-2018-16341 - Nuxeo Remote Code Execution without authentication using Server Side Template Injection☆24Updated 5 years ago
- Proof of concept written in Python to show that in some situations a SSRF vulnerability can be used to steal NTLMv1/v2 hashes.☆57Updated 6 years ago
- Webmin Remote Code Execution (authenticated)☆32Updated 5 years ago
- Confluence Widget Connector path traversal (CVE-2019-3396)☆22Updated 5 years ago
- YSOSERIAL Integration with burp suite☆40Updated 2 years ago
- CVE-2019-8449 Exploit for Jira v2.1 - v8.3.4☆67Updated 4 years ago
- Multithreaded Padding Oracle Attack on Oracle OAM (CVE-2018-2879)☆24Updated 5 years ago
- Learn how to get a reverse shell from JIRA application server☆24Updated 5 years ago
- (Wordpress) Ninja Forms File Uploads Extension <= 3.0.22 – Unauthenticated Arbitrary File Upload☆18Updated 5 years ago
- ☆33Updated 2 years ago
- ☆12Updated 3 years ago
- A Burp extension to show the Collaborator client in a tab☆23Updated last year