nikn0laty / Exploit-for-Searchor-2.4.0-Arbitrary-CMD-Injection

Related projects ⓘ

Alternatives and complementary repositories for Exploit-for-Searchor-2.4.0-Arbitrary-CMD-Injection

• Acceis / exploit-CVE-2023-23752
  Joomla! < 4.2.8 - Unauthenticated information disclosure
  ☆79Updated 10 months ago
• rexpository / powercat-v2.0
  Evade the boys in blue and acquire a reverse shell using powercat v2.0
  ☆49Updated last year
• C4l1b4n / NoSQL-Attack-Suite
  A couple of different scripts, made to automate attacks against NoSQL databases.
  ☆55Updated 8 months ago
• matro7sh / keepass-dump-masterkey
  Script to retrieve the master password of a keepass database <= 2.53.1
  ☆93Updated 7 months ago
• elweth-sec / CVE-2023-2255
  CVE-2023-2255 Libre Office
  ☆56Updated last year
• UncleJ4ck / CVE-2021-41091
  POC for CVE-2021-41091
  ☆65Updated last year
• c0rnf13ld / ipmiPwner
  Exploit to dump ipmi hashes
  ☆29Updated last year
• Pwnistry / Windows-Exploit-Suggester-python3
  This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on th…
  ☆39Updated last year
• jakabakos / CVE-2023-36664-Ghostscript-command-injection
  Ghostscript command injection vulnerability PoC (CVE-2023-36664)
  ☆115Updated last year
• dix0nym / CVE-2015-6967
  Nibbleblog 4.0.3 - Arbitrary File Upload (CVE-2015-6967)
  ☆13Updated 3 years ago
• m3m0o / metabase-pre-auth-rce-poc
  This is a script written in Python that allows the exploitation of the Metabase's software security flaw described in CVE-2023-38646.
  ☆26Updated 4 months ago
• dxnboy / redteam
  ☆32Updated last year
• nowak0x01 / WPXStrike
  WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…
  ☆60Updated 10 months ago
• rayhan0x01 / nodejs-websocket-sqli
  A simple NodeJS WebSocket WebApp vulnerable to blind SQL injection
  ☆69Updated 3 years ago
• nuts7 / CVE-2023-27372
  SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. The fixed versions…
  ☆64Updated last month
• ariyaadinatha / cacti-cve-2022-46169-exploit
  This is poc of CVE-2022-46169 authentication bypass and remote code execution
  ☆16Updated last year
• xct / winpspy
  CLI monitor for windows process- & file activity
  ☆77Updated 4 years ago
• 0x4xel / Bat-Potato
  Automating Juicy Potato Local Privilege Escalation CMD exploit for penetration testers.
  ☆36Updated last year
• z-jxy / keepass_dump
  KeePass 2.X dumper (CVE-2023-32784)
  ☆14Updated last year
• VikasVarshney / ssti-payload
  SSTI Payload Generator
  ☆88Updated 2 years ago
• p0dalirius / Wordpress-webshell-plugin
  A webshell plugin and interactive shell for pentesting a WordPress website.
  ☆77Updated last year
• amriunix / ona-rce
  OpenNetAdmin 18.1.1 - Remote Code Execution
  ☆30Updated 4 years ago
• abdoghazy2015 / ofbiz-CVE-2023-49070-RCE-POC
  ☆59Updated 11 months ago
• ananth-she11z / AutoSQL
  A tool to enumerate and exploit SQL Servers in AD
  ☆34Updated last year
• p0dalirius / LFIDump
  A simple python script to dump remote files through a local file read or local file inclusion web vulnerability.
  ☆65Updated 8 months ago
• AD-Attacks / Active-Directory-Penetration-Testing
  ☆16Updated 7 months ago
• evkl1d / CVE-2023-46604
  ☆28Updated last year
• kimusan / pkwner
  A python3 and bash PoC for CVE-2021-4034 by Kim Schulz
  ☆21Updated 2 years ago
• shroudri / username_generator
  Create a list of possible usernames for bruteforcing
  ☆56Updated 9 months ago