sinsinology / CVE-2024-4358
Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)
☆71Updated 3 months ago
Related projects: ⓘ
- GeoServer Remote Code Execution☆69Updated last month
- CVE-2024-21893: SSRF Vulnerability in Ivanti Connect Secure☆91Updated 7 months ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆68Updated 8 months ago
- Authentication Bypass in GoAnywhere MFT☆63Updated 7 months ago
- ☆57Updated 9 months ago
- Juniper Firewalls CVE-2023-36845 - RCE☆47Updated 8 months ago
- Apache HugeGraph Server RCE Scanner ( CVE-2024-27348 )☆55Updated 3 months ago
- Nuclei template and information about the POC for CVE-2024-25600☆27Updated 6 months ago
- Fortinet FortiClient EMS SQL Injection☆42Updated 5 months ago
- ☆27Updated 3 months ago
- ☆47Updated 3 months ago
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE☆52Updated 6 months ago
- Unofficial Acunetix CLI tool for automated pentesting and bug hunting across large scopes.☆70Updated 10 months ago
- This tool automates the process of running FFUF (Fuzz Faster U Fool) and post-processing its results to extract valid URLs. It supports b…☆35Updated 3 weeks ago
- CVE-2024-3400-RCE☆78Updated 4 months ago
- The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.☆56Updated 6 months ago
- Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability☆54Updated last year
- CVE Collection of jQuery UI XSS Payloads☆110Updated last year
- CVE-2024-27956 WordPress Automatic < 3.92.1 - Unauthenticated SQL Injection☆18Updated 4 months ago
- A command injection vulnerability in web components of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure (9.x, 22.x) allows an a…☆50Updated 8 months ago
- CVE-2024-23897 | Jenkins <= 2.441 & <= LTS 2.426.2 PoC and scanner.☆67Updated 6 months ago
- A BurpSuite extension to deploy an OpenVPN config file to DigitalOcean and set up a SOCKS proxy to route traffic through it☆45Updated 6 months ago
- Perform with Massive Command Injection (Chamilo)☆19Updated last year
- ☆95Updated 7 months ago
- Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)☆84Updated 5 months ago
- PoC for XSS in org.webjars:swagger-ui [3.14.2, 3.36.2]☆52Updated last year
- CVE-2023-35078 Remote Unauthenticated API Access Vulnerability Exploit POC☆117Updated last year
- CVE-2023-34960 Chamilo PoC☆35Updated last year
- A PoC exploit for CVE-2023-43208 - Mirth Connect Remote Code Execution (RCE)☆25Updated 6 months ago
- Encoder PHP webshell to bypass WAF using XOR operations.☆52Updated last year