truonghuuphuc / CVE-2024-39943-PocLinks
CVE-2024-39943 rejetto HFS (aka HTTP File Server) 3 before 0.52.10 on Linux, UNIX, and macOS allows OS command execution by remote authenticated users (if they have Upload permissions). This occurs because a shell is used to execute df (i.e., with execSync instead of spawnSync in child_process in Node.js).
☆19Updated last year
Alternatives and similar repositories for CVE-2024-39943-Poc
Users that are interested in CVE-2024-39943-Poc are comparing it to the libraries listed below
Sorting:
- PAN-OS auth bypass + RCE☆46Updated 8 months ago
- ☆89Updated last year
- This tool, programmed in C#, allows for the fast discovery and exploitation of vulnerabilities in MSSQL servers☆54Updated last year
- CVE-2025-0282 is a critical vulnerability found in Ivanti Connect Secure, allowing Remote Command Execution (RCE) through a buffer overfl…☆47Updated 7 months ago
- A tool for analyzing vulnerabilities in JWT tokens. Advanced JWT Vulnerability Scanner & Exploitation Toolkit☆43Updated 4 months ago
- 针对多个框架的高度自定义的内存马一键打入工具 | A highly customized memory shell one-click injection tool for multiple frameworks☆49Updated last year
- ownCloud exploits for CVE-2023-49105☆36Updated last year
- CVE-2023-22527 - RCE (Remote Code Execution) Vulnerability In Confluence Data Center and Confluence Server PoC☆24Updated last year
- PoC - Authenticated Remote Code Execution in VMware vCenter Server (Exploit)☆43Updated last year
- ☆57Updated last year
- Exploit for the CVE-2024-5806☆45Updated last year
- CVE-2025-31324, SAP Exploit☆17Updated 3 months ago
- Ivanti EPM AgentPortal RCE Vulnerability☆20Updated 10 months ago
- Cleo Unrestricted file upload and download PoC (CVE-2024-50623)☆23Updated 8 months ago
- A Tool that aims to evade av with binary padding☆154Updated last year
- Proof-of-concept exploit for CVE-2024-25153.☆42Updated last year
- Abusing SSRF to deliver an authenticated command injection payload☆30Updated 4 months ago
- CVE-2024-22274: Authenticated Remote Code Execution in VMware vCenter Server☆39Updated last year
- CVE-2021-34473 Microsoft Exchange Server Remote Code Execution Vulnerability☆42Updated 3 years ago
- ☆20Updated 3 months ago
- VMWare Aria Operations for Networks (vRealize Network Insight) Static SSH key RCE (CVE-2023-34039)☆96Updated last year
- Exploit for CVE-2024-27198 - TeamCity Server☆33Updated 7 months ago
- Privilege Escalation using Passwd - April Fools prank☆35Updated 4 months ago
- Proof of Concept for Authentication Bypass in JetBrains TeamCity Pre-2023.11.4☆36Updated last year
- Exploit for CVE-2024-20767 - Adobe ColdFusion☆34Updated 7 months ago
- Small project looking into how we can build malware with zero-imports by dynamically resolving windows APIs using GetProcAddress and GetM…☆40Updated last year
- A modification to fortra's CVE-2023-28252 exploit, compiled to exe☆54Updated last year
- Deserialization payload generator for a variety of .NET formatters☆107Updated last week
- Homemade Aggressor scripts kit for Cobalt Strike☆71Updated last week
- Explorer Persistence technique : Hijacking cscapi.dll order loading path and writing our malicious dll into C:\Windows\cscapi.dll , when …☆85Updated 2 years ago