nikn0laty / Exploit-for-Searchor-2.4.0-Arbitrary-CMD-Injection
Reverse Shell Exploit for Searchor <= 2.4.2 (2.4.0)
☆13Updated last year
Related projects: ⓘ
- Joomla! < 4.2.8 - Unauthenticated information disclosure☆78Updated 8 months ago
- Ghostscript command injection vulnerability PoC (CVE-2023-36664)☆116Updated last year
- POC for CVE-2021-41091☆65Updated last year
- ☆57Updated 9 months ago
- Script to retrieve the master password of a keepass database <= 2.53.1☆90Updated 5 months ago
- A simple python script to dump remote files through a local file read or local file inclusion web vulnerability.☆64Updated 6 months ago
- CVE-2023-2255 Libre Office☆52Updated last year
- Openfire Console Authentication Bypass Vulnerability with RCE plugin☆41Updated 6 months ago
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆58Updated 8 months ago
- A simple NodeJS WebSocket WebApp vulnerable to blind SQL injection☆69Updated 3 years ago
- This is a script written in Python that allows the exploitation of the Metabase's software security flaw described in CVE-2023-38646.☆23Updated 2 months ago
- SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. The fixed versions…☆62Updated 11 months ago
- Get a reverse shell using PostgreSQL☆14Updated last month
- A couple of different scripts, made to automate attacks against NoSQL databases.☆53Updated 6 months ago
- PoC for CVE-2022-46169 - Unauthenticated RCE on Cacti <= 1.2.22☆28Updated last year
- Joomla login bruteforce☆47Updated 2 months ago
- The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.☆56Updated 6 months ago
- Drupalwned is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆34Updated 8 months ago
- Nibbleblog 4.0.3 - Arbitrary File Upload (CVE-2015-6967)☆12Updated 3 years ago
- Veeam Backup Enterprise Manager Authentication Bypass (CVE-2024-29849)☆85Updated 3 months ago
- Tool to enable blind sql injection attacks against websockets using sqlmap☆56Updated 10 months ago
- WiFi hacking Lab. Virtualized WiFi pentesting laboratory without the need for physical WiFi cards, using mac80211_hwsim and vwifi proyect…☆37Updated 11 months ago
- Evade the boys in blue and acquire a reverse shell using powercat v2.0☆49Updated last year
- This is poc of CVE-2022-46169 authentication bypass and remote code execution☆16Updated last year
- Basic script to generate reverse shell payloads, generally most used in ctf.☆27Updated 6 months ago
- CVE-2024-4040 CrushFTP SSTI LFI & Auth Bypass | Full Server Takeover | Wordlist Support☆53Updated 2 months ago
- OpenSSH 2.3 < 7.7 - Username Enumeration☆38Updated last year
- This vulnerability allows an attacker to bypass the credentials brute-force prevention mechanism of the Embedded Web Server (interface) o…☆83Updated 2 months ago
- WEB-Wordlist-Generator creates related wordlists after scanning your web applications.☆41Updated 3 months ago
- CLI monitor for windows process- & file activity☆67Updated 3 years ago