websecnl / CVE-2025-29927-PoC-ExploitLinks
Proof-of-Concept for Authorization Bypass in Next.js Middleware
☆11Updated 3 months ago
Alternatives and similar repositories for CVE-2025-29927-PoC-Exploit
Users that are interested in CVE-2025-29927-PoC-Exploit are comparing it to the libraries listed below
Sorting:
- ☆65Updated 4 months ago
- ☆48Updated last year
- A fast subdomain takeover tool☆80Updated last year
- Morgan is a powerful tool designed to help security researchers, developers, and security auditors identify sensitive information, vulner…☆54Updated 4 months ago
- Apache OFBiz RCE Scanner & Exploit (CVE-2024-38856)☆43Updated 8 months ago
- VICIdial Unauthenticated SQLi to RCE Exploit (CVE-2024-8503 and CVE-2024-8504)☆40Updated 9 months ago
- Apache HTTP Server Vulnerability Testing Tool | PoC for CVE-2024-38472 , CVE-2024-39573 , CVE-2024-38477 , CVE-2024-38476 , CVE-2024-3847…☆98Updated 8 months ago
- Tool to create XSS PDF files☆58Updated last year
- ☆73Updated 2 months ago
- Unauthenticated RCE on CraftCMS when PHP `register_argc_argv` config setting is enabled☆45Updated 6 months ago
- CVE-2024-28955 Exploitation PoC☆34Updated 11 months ago
- an exploit of Server-side request forgery (SSRF)☆49Updated 10 months ago
- Will attempt to retrieve DB details for FastAdmin instances☆66Updated 10 months ago
- A basic tool to check for XSS vulnerabilities. It takes a list of URLs and checks if the parameter values appear in the response.☆27Updated 10 months ago
- Parse FFUF results in GUI with option to sort based by response code , size , keyword☆98Updated 9 months ago
- CVE-2025-24016: RCE in Wazuh server! Remote Code Execution☆49Updated 4 months ago
- POC for CVE-2024-40348. Will attempt to read /etc/passwd from target☆31Updated 11 months ago
- SubCerts is a simple tool that uses certificate transparency logs (via crt.sh) to extract subdomains of a given domain.☆71Updated 5 months ago
- GeoServer Remote Code Execution☆81Updated 2 months ago
- Unofficial Acunetix CLI tool for automated pentesting and bug hunting across large scopes.☆82Updated last year
- This repository contains the best fuzzing wordlist files☆34Updated 6 months ago
- CVE-2024-4040 CrushFTP SSTI LFI & Auth Bypass | Full Server Takeover | Wordlist Support☆57Updated 11 months ago
- Grep subdomains from web pages.☆42Updated 4 months ago
- Xploitra is a powerful reverse shell payload generator for educational and security testing. It offers customizable payloads with advance…☆63Updated 8 months ago
- JSNinja is a powerful tool designed for security researchers and developers looking to extract sensitive information and Urls from JavaSc…☆123Updated 6 months ago
- A passive way to find backups/ sensitive information.☆82Updated last month
- Payload for bug bounty☆94Updated 11 months ago
- IDOR Scanner is a Burp Suite extension that automates the detection and enumeration of potentially vulnerable numeric fields to identify …☆36Updated 4 months ago
- ☆37Updated 3 months ago
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.☆44Updated last year