xcanwin/CVE-2024-4577-PHP-RCE external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

xcanwin/CVE-2024-4577-PHP-RCE

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/xcanwin/CVE-2024-4577-PHP-RCE)

Close

xcanwin / CVE-2024-4577-PHP-RCEView on GitHubMore

• External links
• Readme badge

[漏洞复现] 全球首款利用PHP默认环境（XAMPP）的CVE-2024-4577 PHP-CGI RCE 漏洞 EXP。

☆160Jul 21, 2024Updated last year

Alternatives and similar repositories for CVE-2024-4577-PHP-RCE

Users that are interested in CVE-2024-4577-PHP-RCE are comparing it to the libraries listed below

• Pizz33 / GoThief

  View on GitHub
  集成了截图 键盘记录 剪贴版功能，用于网络限制场景下的信息搜集
  ☆90May 18, 2024Updated last year
• xsshim / GzWebsocket

  View on GitHub
  哥斯拉webshell管理工具的插件，用于连接websocket型webshell
  ☆176Apr 17, 2024Updated last year
• Conan924 / PostHikvision

  View on GitHub
  哥斯拉Hikvision综合安防后渗透插件，运行中心/web前台/MinIO 配置提取（解密）重置密码,还原密码。
  ☆168Oct 8, 2024Updated last year
• 0xchang / DockerApiRCE

  View on GitHub
  DockerApiRCE
  ☆236Oct 22, 2024Updated last year
• KimJun1010 / inspector

  View on GitHub
  IDEA代码审计辅助插件（深信服深蓝实验室天威战队强力驱动）
  ☆581Mar 10, 2025Updated 11 months ago
• ImuSpirit / ActiveMQ_RCE_Pro_Max

  View on GitHub
  CVE-2023-46604
  ☆63Nov 3, 2023Updated 2 years ago
• HKEcho5213 / HKEcho_Nacos

  View on GitHub
  ☆186Dec 7, 2023Updated 2 years ago
• Lotus6 / ConfluenceMemshell

  View on GitHub
  Confluence CVE 2021，2022，2023 利用工具，支持命令执行，哥斯拉，冰蝎 内存马注入
  ☆554Feb 1, 2024Updated 2 years ago
• Neo-Maoku / SearchAvailableExe

  View on GitHub
  寻找可利用的白文件
  ☆556Aug 18, 2025Updated 6 months ago
• TheBeastofwar / JenkinsExploit-GUI

  View on GitHub
  一款Jenkins的综合漏洞利用工具
  ☆461Mar 20, 2024Updated last year
• Hutt0n0 / ActiveMqRCE

  View on GitHub
  用java实现构造openwire协议，利用activeMQ < 5.18.3 RCE 回显利用 内存马注入
  ☆288Nov 20, 2023Updated 2 years ago
• zg-sec / PHP_FileUpload

  View on GitHub
  PHP文件上传50+绕过手法全景解析
  ☆17Mar 16, 2025Updated 11 months ago
• 0xf4n9x / CDGXStreamDeserRCE

  View on GitHub
  亿赛通电子文档安全管理系统XStream反序列化漏洞任意文件上传利用
  ☆120Aug 9, 2024Updated last year
• wgpsec / lc

  View on GitHub
  LC（List Cloud）是一个多云攻击面资产梳理工具
  ☆635Oct 6, 2024Updated last year
• bcvgh / Kingdee_erp_MemShell

  View on GitHub
  金蝶星空云反序列化漏洞内存马
  ☆52Mar 27, 2024Updated last year
• Bl0omZ / JNDIEXP

  View on GitHub
  JNDI在java高版本的利用工具,FUZZ利用链
  ☆597Oct 8, 2022Updated 3 years ago
• MInggongK / jeecg-

  View on GitHub
  jeecg综合漏洞利用工具
  ☆427Aug 30, 2024Updated last year
• RuoJi6 / xxl-job-FLM

  View on GitHub
  xxl-job内存马
  ☆227Jan 26, 2025Updated last year
• wa1ki0g / NoAuth

  View on GitHub
  java-web 自动化鉴权绕过
  ☆376Apr 3, 2025Updated 11 months ago
• BambiZombie / FrchannelPlus

  View on GitHub
  帆软bi反序列化漏洞利用工具
  ☆190Mar 23, 2024Updated last year
• YYHYlh / Dubbo-Scan

  View on GitHub
  一款让你不只在dubbo-sample、vulhub或者其他测试环境里检测和利用成功的Apache Dubbo 漏洞检测工具。
  ☆172Aug 9, 2023Updated 2 years ago
• TAM-K592 / CVE-2024-4577

  View on GitHub
  CVE-2024-4577 is a critical vulnerability in PHP affecting CGI configurations, allowing attackers to execute arbitrary commands via craft…
  ☆79Jun 11, 2024Updated last year
• bmth666 / Yongyou-Unserialize-plus

  View on GitHub
  用友的一些反序列化链子以及1day，二开了狼组的YongYouNcTool，改了一下逻辑以及poc
  ☆123Oct 12, 2024Updated last year
• for-A1kaid / CodeAudit

  View on GitHub
  记录一些代码审计过的源码
  ☆182Feb 26, 2025Updated last year
• convisolabs / CVE-2024-43044-jenkins

  View on GitHub
  Exploit for the vulnerability CVE-2024-43044 in Jenkins
  ☆184Oct 2, 2024Updated last year
• bmth666 / GeoServer-Tools-CVE-2024-36401

  View on GitHub
  CVE-2024-36401 图形化利用工具，支持各个JDK版本利用以及回显、内存马实现
  ☆38Jul 16, 2025Updated 7 months ago
• lintstar / CS-AutoPostChain

  View on GitHub
  基于 OPSEC 的 CobaltStrike 后渗透自动化链
  ☆451Mar 11, 2024Updated last year
• qingchenhh / qc_poc

  View on GitHub
  漏洞poc
  ☆109Jan 4, 2026Updated 2 months ago
• K-7H7l / Jeecg_Tools

  View on GitHub
  本工具为jeecg框架漏洞利用工具非jeecg-boot！
  ☆184Aug 13, 2024Updated last year
• Whoopsunix / utf-8-overlong-encoding

  View on GitHub
  抽离出 utf-8-overlong-encoding 的序列化逻辑，实现 2 3 字节加密序列化数组
  ☆140Mar 11, 2024Updated last year
• 1y0n / AVKiller

  View on GitHub
  一种通过进程注入实现强制关闭部分杀软进程的方法（以360安全卫士和360杀毒为例）
  ☆139Dec 26, 2023Updated 2 years ago
• corunb / Split_tools

  View on GitHub
  分割小工具，可分割木马，一键生成写入、合并、追加命令
  ☆166Jan 5, 2024Updated 2 years ago
• pen4uin / java-echo-generator

  View on GitHub
  一款支持自定义的 Java 回显载荷生成工具｜A customizable Java echo payload generation tool.
  ☆461Jan 12, 2025Updated last year
• novysodope / fupo_for_yonyou

  View on GitHub
  用友漏洞检测，持续更新漏洞检测模块
  ☆479Jul 21, 2025Updated 7 months ago
• whocansee / FilelessAgentMemShell

  View on GitHub
  无需文件落地Agent内存马生成器
  ☆249May 30, 2024Updated last year
• X1r0z / JNDIMap

  View on GitHub
  A powerful JNDI injection exploitation framework that supports RMI, LDAP and LDAPS protocols, including various bypass methods for high-v…
  ☆570Feb 4, 2026Updated last month
• veo / vagent

  View on GitHub
  多功能 java agent 内存马
  ☆514Oct 8, 2023Updated 2 years ago
• Symph0nia / Coda

  View on GitHub
  入侵痕迹清理/Cleaning up traces of intrusion
  ☆244Nov 6, 2024Updated last year
• TonyNPham / GodzillaPlugin-Suo5-MemProxy

  View on GitHub
  一款高性能 HTTP 内存代理 | 哥斯拉插件 | readteam | 红队 | 内存马 | Suo5 | Godzilla | 正向代理
  ☆288Aug 8, 2023Updated 2 years ago