nuts7 / CVE-2023-27372
SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. The fixed versions are 3.2.18, 4.0.10, 4.1.8, and 4.2.1.
☆62Updated 10 months ago
Related projects: ⓘ
- ☆57Updated 9 months ago
- Some tips for Bug Bounty using LibreOffice☆28Updated 2 months ago
- ☆45Updated this week
- A webshell plugin and interactive shell for pentesting a Joomla website.☆41Updated 2 years ago
- Openfire Console Authentication Bypass Vulnerability with RCE plugin☆41Updated 6 months ago
- CVE-2023-2255 Libre Office☆52Updated last year
- Basic reverse shell in C using socket() with complete explanation☆64Updated last year
- Ghostscript command injection vulnerability PoC (CVE-2023-36664)☆116Updated last year
- ☆116Updated 2 months ago
- GeoServer Remote Code Execution☆69Updated last month
- ☆125Updated 8 months ago
- CVE-2024-21893: SSRF Vulnerability in Ivanti Connect Secure☆91Updated 7 months ago
- Proof-of-Concept for CVE-2024-5932☆49Updated 3 weeks ago
- Achieving a Reverse Shell Exploit for Apache ActiveMQ (CVE_2023-46604)☆104Updated 7 months ago
- CVE-2024-3400-RCE☆78Updated 4 months ago
- CVE-2024-40725 and CVE-2024-40898, affecting Apache HTTP Server versions 2.4.0 through 2.4.61. These flaws pose significant risks to web …☆62Updated 2 months ago
- Veeam Backup Enterprise Manager Authentication Bypass (CVE-2024-29849)☆85Updated 3 months ago
- POC for CVE-2021-41091☆65Updated last year
- ☆13Updated last year
- DHCP Server Remote Code Execution impact: 2008 R2 SP1 до Server 2019☆69Updated last year
- PoC for CVE-2022-46169 - Unauthenticated RCE on Cacti <= 1.2.22☆28Updated last year
- A simple python script to dump remote files through a local file read or local file inclusion web vulnerability.☆64Updated 6 months ago
- Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)☆71Updated 3 months ago
- Authentication Bypass in GoAnywhere MFT☆63Updated 7 months ago
- NoArgs is a tool designed to dynamically spoof and conceal process arguments while staying undetected. It achieves this by hooking into W…☆144Updated 4 months ago
- A webshell application and interactive shell for pentesting Apache Tomcat servers.☆93Updated 8 months ago
- Proof of Concept Exploit for PaperCut CVE-2023-27350☆46Updated last year
- POC - Unauthenticated RCE Flaw in Rejetto HTTP File Server - CVE-2024-23692☆21Updated this week
- JetBrains TeamCity Authentication Bypass CVE-2023-42793 Exploit☆45Updated 3 months ago
- Encoder PHP webshell to bypass WAF using XOR operations.☆52Updated last year