securelayer7/CVE-2024-38856_Scanner external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

securelayer7/CVE-2024-38856_Scanner

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/securelayer7/CVE-2024-38856_Scanner)

Close

securelayer7 / CVE-2024-38856_ScannerView on GitHubMore

• External links
• Readme badge

Apache OFBiz RCE Scanner & Exploit (CVE-2024-38856)

☆49Oct 2, 2024Updated last year

Alternatives and similar repositories for CVE-2024-38856_Scanner

Users that are interested in CVE-2024-38856_Scanner are comparing it to the libraries listed below

• bigb0x / CVE-2024-36401

  View on GitHub
  POC for CVE-2024-36401. This POC will attempt to establish a reverse shell from the vlun targets.
  ☆35Jul 4, 2024Updated last year
• bigb0x / CVE-2024-7928

  View on GitHub
  Will attempt to retrieve DB details for FastAdmin instances
  ☆69Aug 20, 2024Updated last year
• Zeyad-Azima / CVE-2024-27348

  View on GitHub
  Apache HugeGraph Server RCE Scanner ( CVE-2024-27348 )
  ☆61Jun 8, 2024Updated last year
• bigb0x / CVE-2024-31982

  View on GitHub
  POC for CVE-2024-31982: XWiki Platform Remote Code Execution > 14.10.20
  ☆10Jun 22, 2024Updated last year
• kljunowsky / CVE-2024-27348

  View on GitHub
  Apache HugeGraph Server Unauthenticated RCE - CVE-2024-27348 Proof of concept Exploit
  ☆18Jun 3, 2024Updated last year
• bigb0x / CVE-2024-40348

  View on GitHub
  POC for CVE-2024-40348. Will attempt to read /etc/passwd from target
  ☆32Jul 21, 2024Updated last year
• Mr-xn / CVE-2024-32113

  View on GitHub
  Apache OFBIZ Path traversal leading to RCE POC[CVE-2024-32113 & CVE-2024-36104]
  ☆27Jun 3, 2024Updated last year
• bigb0x / CVE-2024-36991

  View on GitHub
  POC for CVE-2024-36991: This exploit will attempt to read Splunk /etc/passwd file.
  ☆125Jul 12, 2024Updated last year
• watchtowrlabs / CVE-2024-4577

  View on GitHub
  PHP CGI Argument Injection (CVE-2024-4577) Remote Code Execution PoC
  ☆309Jun 22, 2024Updated last year
• watchtowrlabs / Fortijump-Exploit-CVE-2024-47575

  View on GitHub
  Fortinet Fortimanager Unauthenticated Remote Code Execution AKA FortiJump CVE-2024-47575
  ☆96Nov 14, 2024Updated last year
• seed1337 / CVE-2024-24919-POC

  View on GitHub
  ☆47May 31, 2024Updated last year
• solo10010 / reconWTF

  View on GitHub
  This tool is intended for bounty hunters, the script installs and launches the best set of tools for expanding the attack surface, for W…
  ☆12Apr 22, 2024Updated last year
• Laburity / CVE-2022-31814

  View on GitHub
  Updated Exploit - pfBlockerNG <= 2.1.4_26 Unauth RCE (CVE-2022-31814)
  ☆23Jul 23, 2024Updated last year
• sinsinology / CVE-2024-5009

  View on GitHub
  Exploit for CVE-2024-5009
  ☆13Jul 8, 2024Updated last year
• seajaysec / Ivanti-Connect-Around-Scan

  View on GitHub
  Mitigation validation utility for the Ivanti Connect Around attack chain. Runs multiple checks. CVE-2023-46805, CVE-2024-21887.
  ☆12Feb 3, 2024Updated 2 years ago
• vulnspace / nuclei-templates

  View on GitHub
  ☆37Feb 27, 2026Updated 3 weeks ago
• 0xRahim / Argus

  View on GitHub
  Argus is used to test for Blind XSS and SSRF vulnerbilities or any sort of OOB detection
  ☆14Nov 1, 2024Updated last year
• ifconfig-me / CVE-2024-4956-Bulk-Scanner

  View on GitHub
  [CVE-2024-4956] Nexus Repository Manager 3 Unauthenticated Path Traversal Bulk Scanner
  ☆17Sep 26, 2024Updated last year
• nettitude / CVE-2024-25153

  View on GitHub
  Proof-of-concept exploit for CVE-2024-25153.
  ☆42Mar 13, 2024Updated 2 years ago
• absholi7ly / CVE-2024-44000-LiteSpeed-Cache

  View on GitHub
  CVE-2024-44000 is a vulnerability in the LiteSpeed Cache plugin, a popular WordPress plugin. This vulnerability affects session managemen…
  ☆15Sep 6, 2024Updated last year
• yoryio / CVE-2024-20767

  View on GitHub
  Exploit for CVE-2024-20767 - Adobe ColdFusion
  ☆34Dec 19, 2024Updated last year
• bigb0x / CVE-2024-34102

  View on GitHub
  POC for CVE-2024-34102. A pre-authentication XML entity injection issue in Magento / Adobe Commerce.
  ☆31Jun 29, 2024Updated last year
• Chocapikk / CVE-2024-36401

  View on GitHub
  GeoServer Remote Code Execution
  ☆86Apr 6, 2025Updated 11 months ago
• Zeyad-Azima / CVE-2022-1388

  View on GitHub
  F5 BIG-IP iControl REST vulnerability RCE exploit with Java including a testing LAB
  ☆12May 11, 2023Updated 2 years ago
• gh-ost00 / CVE-2024-4577-RCE

  View on GitHub
  PHP CGI Argument Injection (CVE-2024-4577) RCE
  ☆24Aug 20, 2024Updated last year
• Im10n / CVE-2024-3183-POC

  View on GitHub
  POC for CVE-2024-3183 (FreeIPA Rosting)
  ☆27Aug 20, 2024Updated last year
• mqst / gouge

  View on GitHub
  Gouge is a simple Burp extension to extract or gouge all URLs which are seen in JS files as you visit different websites/webpages in Burp…
  ☆28Jul 21, 2024Updated last year
• rtandr01d / zerologon

  View on GitHub
  Scan for and exploit the zerologon vulnerability.
  ☆10Sep 15, 2020Updated 5 years ago
• W01fh4cker / CVE-2024-30043-XXE

  View on GitHub
  Exploiting XXE Vulnerabilities on Microsoft SharePoint Server and Cloud via Confused URL Parsing
  ☆32Jun 6, 2024Updated last year
• Chocapikk / CVE-2024-34102

  View on GitHub
  CosmicSting (CVE-2024-34102)
  ☆48Sep 5, 2024Updated last year
• rxerium / CVE-2025-61882-CVE-2025-61884

  View on GitHub
  Detection for CVE-2025-61882 & CVE-2025-61884
  ☆36Oct 14, 2025Updated 5 months ago
• Stuub / CVE-2024-4040-SSTI-LFI-PoC

  View on GitHub
  CVE-2024-4040 CrushFTP SSTI LFI & Auth Bypass | Full Server Takeover | Wordlist Support
  ☆60Jul 7, 2024Updated last year
• 4m3rr0r / CVE-2025-47812-poc

  View on GitHub
  Wing FTP Server Remote Code Execution (RCE) Exploit (CVE-2025-47812)
  ☆51Jul 14, 2025Updated 8 months ago
• 0xJin / SubCerts

  View on GitHub
  SubCerts is a simple tool that uses certificate transparency logs (via crt.sh) to extract subdomains of a given domain.
  ☆75Jan 6, 2026Updated 2 months ago
• horizon3ai / CVE-2024-9465

  View on GitHub
  Proof of Concept Exploit for CVE-2024-9465
  ☆31Oct 9, 2024Updated last year
• nullenc0de / FFUF-Workflow-Tool

  View on GitHub
  This tool automates the process of running FFUF (Fuzz Faster U Fool) and post-processing its results to extract valid URLs. It supports b…
  ☆36Nov 5, 2024Updated last year
• l0n3m4n / CVE-2024-22274-RCE

  View on GitHub
  PoC - Authenticated Remote Code Execution in VMware vCenter Server (Exploit)
  ☆43Jul 16, 2024Updated last year
• RevoltSecurities / CVE-2024-24919

  View on GitHub
  An Vulnerability detection and Exploitation tool for CVE-2024-24919
  ☆25Jun 5, 2024Updated last year
• Marven11 / CVE-2024-28397-js2py-Sandbox-Escape

  View on GitHub
  CVE-2024-28397: js2py sandbox escape, bypass pyimport restriction.
  ☆72Aug 28, 2025Updated 6 months ago