Werkzeug has a debug console that requires a pin. It's possible to bypass this with an LFI vulnerability or use it as a local privilege escalation vector.
☆65Nov 16, 2022Updated 3 years ago
Alternatives and similar repositories for werkzeug-debug-console-bypass
Users that are interested in werkzeug-debug-console-bypass are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Exploit codes for rconfig <= 3.9.4☆11Mar 17, 2020Updated 6 years ago
- "VMBreaker" is a specialized tool for virtual machine security testing, offering essential, user-friendly features for efficient penetrat…☆14Apr 15, 2024Updated 2 years ago
- Webmin 1.910 - Remote Code Execution Using Python Script☆11Feb 6, 2024Updated 2 years ago
- CVE-2023-46818 Python3 Exploit for ISPConfig <= 3.2.11 (language_edit.php) PHP Code Injection Vulnerability☆15Apr 16, 2025Updated last year
- A tool collection of various attacks on TLS based on TLS-Attacker☆24Jun 25, 2025Updated 10 months ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Scripts that I've written that others may find useful☆14Aug 17, 2022Updated 3 years ago
- Yet another Werkzeug Console Pin Exploit Explanation☆23Jul 30, 2021Updated 4 years ago
- A free, open-source, multi-lingual, template-based VDP policy, safe harbor clause, securitytxt, and DNS Security TXT generator.☆16Apr 17, 2026Updated 3 weeks ago
- CVE-2020-25223☆11Sep 13, 2021Updated 4 years ago
- Sudo 1.6.x <= 1.6.9p21 and 1.7.x <= 1.7.2p4 Local Privilege Escalation and vulnerable container☆11Dec 16, 2017Updated 8 years ago
- ☆13Dec 30, 2024Updated last year
- A python based minimal DNS server to test/verify DNS rebinding attacks☆80May 15, 2023Updated 2 years ago
- A simple reverse and as well a webshell that recognices the OS (Windows/Linux).☆18Nov 11, 2020Updated 5 years ago
- Sample Spring application to Demonstrate the Gateway Actuator☆49Mar 3, 2022Updated 4 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Compiled dataset of Java deserialization CVEs☆60Aug 31, 2020Updated 5 years ago
- Toy version of the sweet32 attack☆16Nov 24, 2017Updated 8 years ago
- The script checks Jenkins endpoints for CVE-2024-43044 by retrieving the Jenkins version from the innstance and comparing it against know…☆19Aug 8, 2024Updated last year
- Get a reverse shell using PostgreSQL☆21Aug 16, 2024Updated last year
- Zerologon Check and Exploit - Discovered by Tom Tervoort of Secura and expanded on @Dirkjanm's cve-2020-1472 coded example. This tool wil…☆18Apr 12, 2022Updated 4 years ago
- A simple splunk package for obtaining reverse shells on both Windows and most *nix systems.☆139Aug 20, 2018Updated 7 years ago
- A collection of Metasploit plugins I have written for various reasons.☆15Dec 5, 2020Updated 5 years ago
- POC for CVE-2020-9484☆13Feb 10, 2021Updated 5 years ago
- A study resource for the BSCP labs and exams.☆37Aug 8, 2025Updated 9 months ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- AI Personas☆45Updated this week
- A wordlist repository with human-curated and reviewed content.☆129Oct 24, 2023Updated 2 years ago
- A multithreaded Python3 program that fuzzes HTTP headers and values and outputs the results to a CSV file.☆21Jan 13, 2019Updated 7 years ago
- Parse HPROF files from the Spring Boot Heapdump Actuator☆28Jun 11, 2024Updated last year
- Query various sources for CVE proof-of-concepts☆53Jun 1, 2023Updated 2 years ago
- Reverse shell cheat sheet☆38Nov 11, 2022Updated 3 years ago
- Multiple Brute Force XMLRPC [Wordpress]☆14Jun 27, 2022Updated 3 years ago
- KeePass 2.X dumper (CVE-2023-32784)☆27Nov 4, 2023Updated 2 years ago
- Exploit for CVE-2024-27198 - TeamCity Server☆36Dec 19, 2024Updated last year
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- All of Your Copy/Paste Belong to Us: Stealing the clipboard and using it for C2 communications☆86Feb 21, 2019Updated 7 years ago
- ☆30Oct 1, 2025Updated 7 months ago
- CVE PoCs☆21Jul 16, 2020Updated 5 years ago
- Python's handling of NaN is....interesting?broken?...this project illustrates the issue☆13Dec 28, 2021Updated 4 years ago
- A script that gives you the credentials of a Pterodactyl panel vulnerable to CVE-2025-49132☆17Jun 22, 2025Updated 10 months ago
- RippleBoard is here☆13Aug 6, 2016Updated 9 years ago
- A Collection of Proof of Concepts for non-published Web Exploits and Common CVEs☆10Nov 29, 2020Updated 5 years ago