nuts7 / CVE-2023-27372Links
SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. The fixed versions are 3.2.18, 4.0.10, 4.1.8, and 4.2.1.
☆65Updated last year
Alternatives and similar repositories for CVE-2023-27372
Users that are interested in CVE-2023-27372 are comparing it to the libraries listed below
Sorting:
- ☆58Updated last year
- CVE-2024-3400 Palo Alto OS Command Injection☆161Updated last year
- A tool designed to exploit bad implementations of decryption mechanisms in Laravel applications.☆106Updated 4 months ago
- Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)☆77Updated last year
- Drupalwned is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆40Updated last year
- CVE-2024-21893: SSRF Vulnerability in Ivanti Connect Secure☆91Updated last year
- CVE-2024-41570: Havoc C2 0.7 Teamserver SSRF exploit☆74Updated last year
- Microsoft SharePoint Server Elevation of Privilege Vulnerability☆234Updated 2 years ago
- GeoServer Remote Code Execution☆81Updated 6 months ago
- Ubuntu Privilege Escalation bash one-liner using CVE-2023-32629 & CVE-2023-2640☆106Updated last year
- Veeam Backup Enterprise Manager Authentication Bypass (CVE-2024-29849)☆90Updated last year
- ☆88Updated 3 months ago
- ☆44Updated last week
- Backup Migration <= 1.3.7 - Unauthenticated Remote Code Execution☆76Updated last year
- POC for CVE-2024-36991: This exploit will attempt to read Splunk /etc/passwd file.☆126Updated last year
- Apache HugeGraph Server RCE Scanner ( CVE-2024-27348 )☆61Updated last year
- CVE-2024-3400-RCE☆90Updated last year
- CVE-2023-22515: Confluence Broken Access Control Exploit☆137Updated 2 years ago
- Proof of Concept Exploit for PaperCut CVE-2023-27350☆53Updated 2 years ago
- ☆156Updated last year
- MOVEit CVE-2023-34362☆138Updated 2 years ago
- Script to retrieve the master password of a keepass database <= 2.53.1☆113Updated last year
- CVE-2024-40725 and CVE-2024-40898, affecting Apache HTTP Server versions 2.4.0 through 2.4.61. These flaws pose significant risks to web …☆84Updated last year
- Ghostscript command injection vulnerability PoC (CVE-2023-36664)☆126Updated 2 years ago
- Authentication Bypass in GoAnywhere MFT☆64Updated last year
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆67Updated last year
- POC for CVE-2021-41091☆65Updated 2 years ago
- Joomla! < 4.2.8 - Unauthenticated information disclosure☆90Updated last year
- CVE-2023-35078 Remote Unauthenticated API Access Vulnerability Exploit POC☆118Updated 2 years ago
- POC & $BASH script for CVE-2024-4577☆44Updated last year