pimps / CVE-2017-1000486
Primefaces <= 5.2.21, 5.3.8 or 6.0 - Remote Code Execution Exploit
☆88Updated 8 months ago
Related projects ⓘ
Alternatives and complementary repositories for CVE-2017-1000486
- 用Kali 2.0复现Apache Tomcat Session反序列化代码执行漏洞☆52Updated 4 years ago
- Gopher Tomcat Deployer☆47Updated 5 years ago
- A Proof of concept for CVE-2021-27850 affecting Apache Tapestry and leading to unauthencticated remote code execution.☆5Updated last year
- Authenticated SSRF in Grafana☆77Updated 4 months ago
- Exploitation toolkit for RichFaces☆102Updated last year
- ☆49Updated 2 years ago
- Sample Spring Boot App Demonstrating RCE via Exposed env Actuator and H2 Database☆103Updated 4 years ago
- com_media allowed paths that are not intended for image uploads to RCE☆71Updated 3 years ago
- POC which exploits a vulnerability within Nagios XI (5.6.5) to spawn a root shell☆13Updated 3 years ago
- A Python script to exploit CVE-2022-36446 Software Package Updates RCE (Authenticated) on Webmin < 1.997.☆110Updated 2 years ago
- Apache Tomcat Remote Code Execution on Windows - CGI-BIN☆76Updated 5 years ago
- ☆65Updated 3 years ago
- ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)☆29Updated 2 years ago
- ☆27Updated 3 years ago
- Tool is to check for Cache Deception Attack Both For Authenticated and UnAuthenticated Pages☆43Updated 2 years ago
- CVE-2020-11890: Improper input validations in the usergroup table class could lead to a broken ACL configuration to RCE☆62Updated last year
- ☆116Updated 4 years ago
- WebLogic Insecure Deserialization - CVE-2019-2725 payload builder & exploit☆46Updated 5 years ago
- CVE-2020-5410 Spring Cloud Config directory traversal vulnerability☆31Updated 4 years ago
- ☆63Updated 5 years ago
- Exploitation code for CVE-2021-40539☆46Updated 3 years ago
- RCE on Kibana versions before 5.6.15 and 6.6.0 in the Timelion visualizer☆54Updated 4 years ago
- Exploits developed by Mikael Kall☆48Updated last year
- Burp extension to filter JSON on the fly with JQ queries in the HTTP message viewer.☆45Updated 3 years ago
- CVE-2019-2729 Exploit Script☆42Updated 4 years ago
- CVE-2021-40346 PoC (HAProxy HTTP Smuggling)☆39Updated 3 years ago
- Public Disclosures☆87Updated 2 years ago
- ☆183Updated 3 years ago