spaceraccoon / spring-boot-actuator-h2-rceLinks
Sample Spring Boot App Demonstrating RCE via Exposed env Actuator and H2 Database
☆107Updated 5 years ago
Alternatives and similar repositories for spring-boot-actuator-h2-rce
Users that are interested in spring-boot-actuator-h2-rce are comparing it to the libraries listed below
Sorting:
- Exploit for WebSocket Vulnerability in Apache Tomcat☆168Updated 4 years ago
- Citrix ADC Vulns☆87Updated 5 years ago
- ☆117Updated 5 years ago
- 用Kali 2.0复现Apache Tomcat Session反序列化代码执行漏洞☆53Updated 5 years ago
- S2-061 CVE-2020-17530☆29Updated 4 years ago
- ☆65Updated 4 years ago
- Apache Tomcat + MongoDB Remote Code Execution☆114Updated 4 years ago
- A vulnerable application exposing Spring Boot Actuators☆123Updated 6 years ago
- Exploitation Tool for CVE-2017-3066 targeting Adobe Coldfusion 11/12☆95Updated 2 years ago
- Atlassian JIRA Template injection vulnerability RCE☆93Updated 6 years ago
- Here you can get full exploit for SAP NetWeaver AS JAVA☆76Updated 7 years ago
- Directory transversal to remote code execution☆69Updated 5 years ago
- ☆111Updated 5 years ago
- Apache Solr RCE via Velocity template☆113Updated 5 years ago
- Public Disclosures☆91Updated 3 years ago
- Apache Flink 目录遍历漏洞批量检测 (CVE-2020-17519)☆48Updated 4 years ago
- tetctf2020_amf_writeups☆23Updated 4 years ago
- RmiTaste allows security professionals to detect, enumerate, interact and exploit RMI services by calling remote methods with gadgets fro…☆109Updated 4 years ago
- Template Injection in Email Templates leads to code execution on Jira Service Management Server☆48Updated 3 years ago
- CVE-2020-5410 Spring Cloud Config directory traversal vulnerability☆31Updated 5 years ago
- None of the exploit code or research is my own but all available in public domain☆28Updated 6 years ago
- CVE-2020-11890: Improper input validations in the usergroup table class could lead to a broken ACL configuration to RCE☆62Updated 2 years ago
- Slides/Demos from the BSides Munich 2019 talk "Attacking Java RMI in 2019"☆101Updated 5 years ago
- JWT_Brute☆32Updated 5 years ago
- CVE-2020-8163 - Remote code execution of user-provided local names in Rails☆61Updated 2 years ago
- Exploitation toolkit for RichFaces☆104Updated last year
- CVE-2019-11580 Atlassian Crowd and Crowd Data Center RCE☆106Updated 6 years ago
- PoC exploit for VMware Cloud Director RCE (CVE-2020-3956)☆88Updated 5 years ago
- ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)☆30Updated 3 years ago
- Tool to searching sentry config on page or in javascript files and check blind SSRF☆70Updated last year