CVE-2022-0847
A flaw was found in the way the "flags" member of the new pipe buffer structure was lacking proper initialization in copy_page_to_iter_pipe and push_pipe functions in the Linux kernel and could thus contain stale values. An unprivileged local user could use this flaw to write to pages in the page cache backed by read only files and as such escalate their privileges on the system.
Github link:
https://github.com/Mephierr/DirtyPipe_exploit
A flaw was found in the way the "flags" member of the new pipe buffer structure was lacking proper initialization in copy_page_to_iter_pipe and push_pipe functions in the Linux kernel and could thus contain stale values. An unprivileged local user could use this flaw to write to pages in the page cache backed by read only files and as such escalate their privileges on the system.
Github link:
https://github.com/Mephierr/DirtyPipe_exploit
GitHub
GitHub - Mephierr/DirtyPipe_exploit: CVE-2022-0847
CVE-2022-0847. Contribute to Mephierr/DirtyPipe_exploit development by creating an account on GitHub.
CVE-2024-41570
An Unauthenticated Server-Side Request Forgery (SSRF) in demon callback handling in Havoc 2 0.7 allows attackers to send arbitrary network traffic originating from the team server.
Github link:
https://github.com/kit4py/CVE-2024-41570
An Unauthenticated Server-Side Request Forgery (SSRF) in demon callback handling in Havoc 2 0.7 allows attackers to send arbitrary network traffic originating from the team server.
Github link:
https://github.com/kit4py/CVE-2024-41570
GitHub
GitHub - kit4py/CVE-2024-41570: Automated Reverse Shell Exploit via WebSocket | Havoc-C2-SSRF with RCE
Automated Reverse Shell Exploit via WebSocket | Havoc-C2-SSRF with RCE - kit4py/CVE-2024-41570
CVE-2021-40438
A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user. This issue affects Apache HTTP Server 2.4.48 and earlier.
Github link:
https://github.com/element-security/check-point-gateways-rce
A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user. This issue affects Apache HTTP Server 2.4.48 and earlier.
Github link:
https://github.com/element-security/check-point-gateways-rce
CVE-2024-27198
In JetBrains TeamCity before 2023.11.4 authentication bypass allowing to perform admin actions was possible
Github link:
https://github.com/ArtemCyberLab/Project-Exploiting-CVE-2024-27198-RCE-Vulnerability
In JetBrains TeamCity before 2023.11.4 authentication bypass allowing to perform admin actions was possible
Github link:
https://github.com/ArtemCyberLab/Project-Exploiting-CVE-2024-27198-RCE-Vulnerability
GitHub
GitHub - ArtemCyberLab/Project-Exploiting-CVE-2024-27198-RCE-Vulnerability: In this project, I exploited the CVE-2024-27198-RCE…
In this project, I exploited the CVE-2024-27198-RCE vulnerability to perform a remote code execution (RCE) attack on a vulnerable TeamCity server. - ArtemCyberLab/Project-Exploiting-CVE-2024-27198-...
CVE-2024-41570
An Unauthenticated Server-Side Request Forgery (SSRF) in demon callback handling in Havoc 2 0.7 allows attackers to send arbitrary network traffic originating from the team server.
Github link:
https://github.com/thisisveryfunny/CVE-2024-41570-Havoc-C2-RCE
An Unauthenticated Server-Side Request Forgery (SSRF) in demon callback handling in Havoc 2 0.7 allows attackers to send arbitrary network traffic originating from the team server.
Github link:
https://github.com/thisisveryfunny/CVE-2024-41570-Havoc-C2-RCE
GitHub
GitHub - thisisveryfunny/CVE-2024-41570-Havoc-C2-RCE: This is a Chained RCE in the Havoc C2 framework using github.com/chebuya…
This is a Chained RCE in the Havoc C2 framework using github.com/chebuya and github.com/IncludeSecurity pocs - thisisveryfunny/CVE-2024-41570-Havoc-C2-RCE
CVE-2024-38077
Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability
Github link:
https://github.com/Accord96/CVE-2024-38077-POC
Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability
Github link:
https://github.com/Accord96/CVE-2024-38077-POC
GitHub
GitHub - Accord96/CVE-2024-38077-POC: CVE-2024-38077-POC
CVE-2024-38077-POC. Contribute to Accord96/CVE-2024-38077-POC development by creating an account on GitHub.
CVE-2021-40438
A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user. This issue affects Apache HTTP Server 2.4.48 and earlier.
Github link:
https://github.com/yakir2b/check-point-gateways-rce
A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user. This issue affects Apache HTTP Server 2.4.48 and earlier.
Github link:
https://github.com/yakir2b/check-point-gateways-rce
GitHub
GitHub - yakir2b/check-point-gateways-rce: Check Point Security Gateways RCE via CVE-2021-40438
Check Point Security Gateways RCE via CVE-2021-40438 - yakir2b/check-point-gateways-rce
CVE-2023-4220
Unrestricted file upload in big file upload functionality in `/main/inc/lib/javascript/bigupload/inc/bigUpload.php` in Chamilo LMS <= v1.11.24 allows unauthenticated attackers to perform stored cross-site scripting attacks and obtain remote code execution via uploading of web shell.
Github link:
https://github.com/zora-beep/CVE-2023-4220
Unrestricted file upload in big file upload functionality in `/main/inc/lib/javascript/bigupload/inc/bigUpload.php` in Chamilo LMS <= v1.11.24 allows unauthenticated attackers to perform stored cross-site scripting attacks and obtain remote code execution via uploading of web shell.
Github link:
https://github.com/zora-beep/CVE-2023-4220
GitHub
GitHub - zora-beep/CVE-2023-4220: Exploit for CVE-2023-4220
Exploit for CVE-2023-4220. Contribute to zora-beep/CVE-2023-4220 development by creating an account on GitHub.
CVE-2024-41570
An Unauthenticated Server-Side Request Forgery (SSRF) in demon callback handling in Havoc 2 0.7 allows attackers to send arbitrary network traffic originating from the team server.
Github link:
https://github.com/0xLynk/CVE-2024-41570-POC
An Unauthenticated Server-Side Request Forgery (SSRF) in demon callback handling in Havoc 2 0.7 allows attackers to send arbitrary network traffic originating from the team server.
Github link:
https://github.com/0xLynk/CVE-2024-41570-POC
GitHub
GitHub - 0xLynk/CVE-2024-41570-POC: CVE-2024-41570 is a critical SSRF vulnerability in Havoc C2 v0.7 that allows an unauthenticated…
CVE-2024-41570 is a critical SSRF vulnerability in Havoc C2 v0.7 that allows an unauthenticated attacker to send arbitrary network requests from the team server. This flaw can be exploited for inte...
CVE-2022-40684
An authentication bypass using an alternate path or channel [CWE-288] in Fortinet FortiOS version 7.2.0 through 7.2.1 and 7.0.0 through 7.0.6, FortiProxy version 7.2.0 and version 7.0.0 through 7.0.6 and FortiSwitchManager version 7.2.0 and 7.0.0 allows an unauthenticated atttacker to perform operations on the administrative interface via specially crafted HTTP or HTTPS requests.
Github link:
https://github.com/niklasmato/fortileak-01-2025-Be
An authentication bypass using an alternate path or channel [CWE-288] in Fortinet FortiOS version 7.2.0 through 7.2.1 and 7.0.0 through 7.0.6, FortiProxy version 7.2.0 and version 7.0.0 through 7.0.6 and FortiSwitchManager version 7.2.0 and 7.0.0 allows an unauthenticated atttacker to perform operations on the administrative interface via specially crafted HTTP or HTTPS requests.
Github link:
https://github.com/niklasmato/fortileak-01-2025-Be
GitHub
GitHub - niklasmato/fortileak-01-2025-Be: This repository contains informaion about the Fortigate firewall vulnerability (CVE-2022…
This repository contains informaion about the Fortigate firewall vulnerability (CVE-2022-40684) and affected data that were publicly disclosed by the Belsen Group. This information is being shared ...