Exploits from Github
@github_exploits
537 subscribers
1 photo
624 files
3.56K links
https://t.me/PentestNotes

https://t.me/dbugs1337
Download Telegram
About
Blog
Apps
Platform
Join
Exploits from Github
537 subscribers
Exploits from Github
CVE-2024-41992

None

Github link:
https://github.com/fj016/CVE-2024-41992-PoC
GitHub
GitHub - fj016/CVE-2024-41992-PoC: PoC for the CVE-2024-41992 (RCE on devices running WiFi-TestSuite-DUT)
PoC for the CVE-2024-41992 (RCE on devices running WiFi-TestSuite-DUT) - fj016/CVE-2024-41992-PoC
9 views
Exploits from Github
CVE-2019-19470

None

Github link:
https://github.com/juliourena/CVE-2019-19470-RedTeamRD
GitHub
GitHub - juliourena/CVE-2019-19470-RedTeamRD: Este repositorio contiene el código y las instrucciones para replicar el exploit…
Este repositorio contiene el código y las instrucciones para replicar el exploit CVE-2019-19470 descubierto por CODEWHITE. Aquí se encuentran el código fuente de los ejemplos que utilicé en el meet...
10 views
Exploits from Github
CVE-2024-42845

None

Github link:
https://github.com/partywavesec/invesalius3_vulnerabilities
GitHub
GitHub - partywavesec/invesalius3_vulnerabilities: InVesalius discovered CVE. CVE-2024-42845, CVE-2024-44825
InVesalius discovered CVE. CVE-2024-42845, CVE-2024-44825 - partywavesec/invesalius3_vulnerabilities
8 views
Exploits from Github
CVE-2024-43035

None

Github link:
https://github.com/ZeroPathAI/Fonoster-LFI-PoC
GitHub
GitHub - ZeroPathAI/Fonoster-LFI-PoC: Proof-of-concept exploit for Fonoster LFI vulnerability (CVE-2024-43035)
Proof-of-concept exploit for Fonoster LFI vulnerability (CVE-2024-43035) - ZeroPathAI/Fonoster-LFI-PoC
7 views
Exploits from Github
CVE-2024-28000

None

Github link:
https://github.com/Alucard0x1/CVE-2024-28000
GitHub
GitHub - Alucard0x1/CVE-2024-28000: LiteSpeed Cache Privilege Escalation PoC
LiteSpeed Cache Privilege Escalation PoC. Contribute to Alucard0x1/CVE-2024-28000 development by creating an account on GitHub.
9 views
Exploits from Github
CVE-2024-4358

In Progress Telerik Report Server, version 2024 Q1 (10.0.24.305) or earlier, on IIS, an unauthenticated attacker can gain access to Telerik Report Server restricted functionality via an authentication bypass vulnerability.

Github link:
https://github.com/fa-rrel/CVE-2024-4358
GitHub
GitHub - gh-ost00/CVE-2024-4358: Telerik Report Server deserialization and authentication bypass exploit chain for CVE-2024-4358/CVE…
Telerik Report Server deserialization and authentication bypass exploit chain for CVE-2024-4358/CVE-2024-1800 - gh-ost00/CVE-2024-4358
10 views
Exploits from Github
CVE-2023-42793

In JetBrains TeamCity before 2023.05.4 authentication bypass leading to RCE on TeamCity Server was possible

Github link:
https://github.com/FlojBoj/CVE-2023-42793
GitHub
GitHub - FlojBoj/CVE-2023-42793: TeamCity CVE-2023-42793 RCE (Remote Code Execution)
TeamCity CVE-2023-42793 RCE (Remote Code Execution) - FlojBoj/CVE-2023-42793
9 views
Exploits from Github
CVE-2024-28995













SolarWinds Serv-U was susceptible to a directory transversal vulnerability that would allow access to read sensitive files on the host machine.









Github link:
https://github.com/gotr00t0day/CVE-2024-28995
GitHub
GitHub - gotr00t0day/CVE-2024-28995: SolarWinds Serv-U was susceptible to a directory transversal vulnerability that would allow…
SolarWinds Serv-U was susceptible to a directory transversal vulnerability that would allow access to read sensitive files on the host machine. - GitHub - gotr00t0day/CVE-2024-28995: SolarWinds Se...
9 views
Exploits from Github
CVE-2023-4220

Unrestricted file upload in big file upload functionality in `/main/inc/lib/javascript/bigupload/inc/bigUpload.php` in Chamilo LMS <= v1.11.24 allows unauthenticated attackers to perform stored cross-site scripting attacks and obtain remote code execution via uploading of web shell.

Github link:
https://github.com/thefizzyfish/CVE-2023-4220
GitHub
GitHub - thefizzyfish/CVE-2023-4220: Python exploit for Chamilo Unrestricted File Upload Vuln - CVE-2023-4220
Python exploit for Chamilo Unrestricted File Upload Vuln - CVE-2023-4220 - thefizzyfish/CVE-2023-4220
9 views
Exploits from Github
CVE-2024-38063

None

Github link:
https://github.com/haroonawanofficial/CVE-2024-38063-Research-Tool
GitHub
GitHub - haroonawanofficial/CVE-2024-38063-Research-Tool: This is a functional proof of concept (PoC) for CVE-2024-38063. However…
This is a functional proof of concept (PoC) for CVE-2024-38063. However, it's important to note that this CVE is theoretical and not exploitable in a real-world scenario. To enhance underst...
9 views
Exploits from Github
CVE-2023-50564

None

Github link:
https://github.com/thefizzyfish/CVE-2023-50564-pluck
GitHub
GitHub - thefizzyfish/CVE-2023-50564-pluck: CVE-2023-50564 - An arbitrary file upload vulnerability in the component /inc/mod…
CVE-2023-50564 - An arbitrary file upload vulnerability in the component /inc/modules_install.php of Pluck-CMS v4.7.18 allows attackers to execute arbitrary code via uploading a crafted ZIP file. ...
11 views
Exploits from Github
CVE-2024-38063

None

Github link:
https://github.com/ynwarcs/CVE-2024-38063
GitHub
GitHub - ynwarcs/CVE-2024-38063: poc for CVE-2024-38063 (RCE in tcpip.sys)
poc for CVE-2024-38063 (RCE in tcpip.sys). Contribute to ynwarcs/CVE-2024-38063 development by creating an account on GitHub.
11 views
Exploits from Github
CVE-2024-44083

None

Github link:
https://github.com/Azvanzed/CVE-2024-44083
GitHub
GitHub - Azvanzed/CVE-2024-44083: Makes IDA (most versions) to crash upon opening it.
Makes IDA (most versions) to crash upon opening it. - GitHub - Azvanzed/CVE-2024-44083: Makes IDA (most versions) to crash upon opening it.
9 views
Exploits from Github
CVE-2024-5932

None

Github link:
https://github.com/EQSTSeminar/CVE-2024-5932
GitHub
GitHub - EQSTLab/CVE-2024-5932: GiveWP PHP Object Injection exploit
GiveWP PHP Object Injection exploit. Contribute to EQSTLab/CVE-2024-5932 development by creating an account on GitHub.
9 views
Exploits from Github
CVE-2024-28000

None

Github link:
https://github.com/ebrasha/CVE-2024-28000
GitHub
GitHub - ebrasha/CVE-2024-28000: LiteSpeed Cache Privilege Escalation PoC - CVE-2024-28000
LiteSpeed Cache Privilege Escalation PoC - CVE-2024-28000 - ebrasha/CVE-2024-28000
7 views
Exploits from Github
CVE-2024-45241

None

Github link:
https://github.com/d4lyw/CVE-2024-45241
GitHub
GitHub - d4lyw/CVE-2024-45241: Path Traversal in CentralSquare's CryWolf
Path Traversal in CentralSquare's CryWolf. Contribute to d4lyw/CVE-2024-45241 development by creating an account on GitHub.
11 views
Exploits from Github
CVE-2024-30088

Windows Kernel Elevation of Privilege Vulnerability

Github link:
https://github.com/Justintroup85/exploits-forsale-collateral-damage
GitHub
GitHub - Justintroup85/exploits-forsale-collateral-damage: Kernel exploit for Xbox SystemOS using CVE-2024-30088
Kernel exploit for Xbox SystemOS using CVE-2024-30088 - Justintroup85/exploits-forsale-collateral-damage
11 views
Exploits from Github
CVE-2024-2887

None

Github link:
https://github.com/rycbar77/CVE-2024-2887
GitHub
GitHub - rycbar77/CVE-2024-2887: For V8CTF M123
For V8CTF M123. Contribute to rycbar77/CVE-2024-2887 development by creating an account on GitHub.
10 views
Exploits from Github
CVE-2024-1939

None

Github link:
https://github.com/rycbar77/CVE-2024-1939
GitHub
GitHub - rycbar77/CVE-2024-1939: For V8CTF M122
For V8CTF M122. Contribute to rycbar77/CVE-2024-1939 development by creating an account on GitHub.
9 views
Exploits from Github
CVE-2022-35914

/vendor/htmlawed/htmlawed/htmLawedTest.php in the htmlawed module for GLPI through 10.0.2 allows PHP code injection.

Github link:
https://github.com/noxlumens/CVE-2022-35914_poc
GitHub
GitHub - noxlumens/CVE-2022-35914_poc: Modified for GLPI Offsec Lab: call_user_func, array_map, passthru
Modified for GLPI Offsec Lab: call_user_func, array_map, passthru - noxlumens/CVE-2022-35914_poc
11 views