2019-12-08 14:19:20 +01:00
[
2021-03-15 04:09:16 +01:00
{
"id" : 52896981 ,
"name" : "dh-CVE_2016_2098" ,
"full_name" : "hderms\/dh-CVE_2016_2098" ,
"owner" : {
"login" : "hderms" ,
"id" : 833575 ,
"avatar_url" : "https:\/\/avatars.githubusercontent.com\/u\/833575?v=4" ,
"html_url" : "https:\/\/github.com\/hderms"
} ,
"html_url" : "https:\/\/github.com\/hderms\/dh-CVE_2016_2098" ,
"description" : "Proof of concept showing how CVE-2016-2098 leads to remote code execution" ,
"fork" : false ,
"created_at" : "2016-03-01T17:45:29Z" ,
"updated_at" : "2020-06-06T02:45:09Z" ,
"pushed_at" : "2016-03-01T17:45:55Z" ,
"stargazers_count" : 3 ,
"watchers_count" : 3 ,
"forks_count" : 4 ,
2021-09-13 23:12:57 +02:00
"allow_forking" : true ,
2021-10-06 23:13:51 +02:00
"is_template" : false ,
2022-06-28 20:20:29 +02:00
"web_commit_signoff_required" : false ,
2021-10-06 23:13:51 +02:00
"topics" : [ ] ,
2021-10-01 23:13:10 +02:00
"visibility" : "public" ,
2021-03-15 04:09:16 +01:00
"forks" : 4 ,
"watchers" : 3 ,
"score" : 0
} ,
{
"id" : 60613259 ,
"name" : "PoC_CVE-2016-2098_Rails42" ,
"full_name" : "CyberDefenseInstitute\/PoC_CVE-2016-2098_Rails42" ,
"owner" : {
"login" : "CyberDefenseInstitute" ,
"id" : 13356356 ,
"avatar_url" : "https:\/\/avatars.githubusercontent.com\/u\/13356356?v=4" ,
"html_url" : "https:\/\/github.com\/CyberDefenseInstitute"
} ,
"html_url" : "https:\/\/github.com\/CyberDefenseInstitute\/PoC_CVE-2016-2098_Rails42" ,
"description" : "A PoC of CVE-2016-2098 (rails4.2.5.1 \/ view render)" ,
"fork" : false ,
"created_at" : "2016-06-07T12:59:31Z" ,
"updated_at" : "2019-08-26T16:39:44Z" ,
"pushed_at" : "2016-06-07T13:15:24Z" ,
"stargazers_count" : 1 ,
"watchers_count" : 1 ,
"forks_count" : 0 ,
2021-09-13 23:12:57 +02:00
"allow_forking" : true ,
2021-10-06 23:13:51 +02:00
"is_template" : false ,
2022-06-28 20:20:29 +02:00
"web_commit_signoff_required" : false ,
2021-10-06 23:13:51 +02:00
"topics" : [
"poc" ,
"rails" ,
"vulnerability"
] ,
2021-10-01 23:13:10 +02:00
"visibility" : "public" ,
2021-03-15 04:09:16 +01:00
"forks" : 0 ,
"watchers" : 1 ,
"score" : 0
} ,
2019-12-08 14:19:20 +01:00
{
"id" : 80069309 ,
"name" : "rails-PoC-CVE-2016-2098" ,
"full_name" : "Alejandro-MartinG\/rails-PoC-CVE-2016-2098" ,
"owner" : {
"login" : "Alejandro-MartinG" ,
"id" : 14140693 ,
2021-01-21 16:10:20 +01:00
"avatar_url" : "https:\/\/avatars.githubusercontent.com\/u\/14140693?v=4" ,
2019-12-12 06:14:27 +01:00
"html_url" : "https:\/\/github.com\/Alejandro-MartinG"
2019-12-08 14:19:20 +01:00
} ,
"html_url" : "https:\/\/github.com\/Alejandro-MartinG\/rails-PoC-CVE-2016-2098" ,
"description" : "Proof of concept CVE-2016-2098" ,
"fork" : false ,
"created_at" : "2017-01-25T23:42:31Z" ,
"updated_at" : "2017-07-05T14:05:44Z" ,
"pushed_at" : "2017-01-25T23:46:47Z" ,
"stargazers_count" : 1 ,
"watchers_count" : 1 ,
"forks_count" : 0 ,
2021-09-13 23:12:57 +02:00
"allow_forking" : true ,
2021-10-06 23:13:51 +02:00
"is_template" : false ,
2022-06-28 20:20:29 +02:00
"web_commit_signoff_required" : false ,
2021-10-06 23:13:51 +02:00
"topics" : [ ] ,
2021-10-01 23:13:10 +02:00
"visibility" : "public" ,
2019-12-08 14:19:20 +01:00
"forks" : 0 ,
"watchers" : 1 ,
2019-12-09 16:05:38 +01:00
"score" : 0
2019-12-08 14:19:20 +01:00
} ,
{
2019-12-12 06:14:27 +01:00
"id" : 120927347 ,
"name" : "CVE-2016-2098" ,
"full_name" : "0x00-0x00\/CVE-2016-2098" ,
2019-12-08 14:19:20 +01:00
"owner" : {
2019-12-12 06:14:27 +01:00
"login" : "0x00-0x00" ,
"id" : 23364530 ,
2021-01-21 16:10:20 +01:00
"avatar_url" : "https:\/\/avatars.githubusercontent.com\/u\/23364530?v=4" ,
2019-12-12 06:14:27 +01:00
"html_url" : "https:\/\/github.com\/0x00-0x00"
2019-12-08 14:19:20 +01:00
} ,
2019-12-12 06:14:27 +01:00
"html_url" : "https:\/\/github.com\/0x00-0x00\/CVE-2016-2098" ,
"description" : "Ruby On Rails unrestricted render() exploit" ,
2019-12-08 14:19:20 +01:00
"fork" : false ,
2019-12-12 06:14:27 +01:00
"created_at" : "2018-02-09T16:16:08Z" ,
2021-06-17 11:11:35 +02:00
"updated_at" : "2021-06-17T05:22:34Z" ,
2019-12-12 06:14:27 +01:00
"pushed_at" : "2018-02-09T16:17:35Z" ,
2021-06-17 11:11:35 +02:00
"stargazers_count" : 16 ,
"watchers_count" : 16 ,
2020-10-21 05:08:57 +02:00
"forks_count" : 4 ,
2021-09-13 23:12:57 +02:00
"allow_forking" : true ,
2021-10-06 23:13:51 +02:00
"is_template" : false ,
2022-06-28 20:20:29 +02:00
"web_commit_signoff_required" : false ,
2021-10-06 23:13:51 +02:00
"topics" : [
"exploit" ,
"rail" ,
"rails" ,
"render" ,
"ruby"
] ,
2021-10-01 23:13:10 +02:00
"visibility" : "public" ,
2020-10-21 05:08:57 +02:00
"forks" : 4 ,
2021-06-17 11:11:35 +02:00
"watchers" : 16 ,
2019-12-12 06:14:27 +01:00
"score" : 0
} ,
{
"id" : 137853310 ,
"name" : "CVE-2016-2098" ,
"full_name" : "its-arun\/CVE-2016-2098" ,
"owner" : {
"login" : "its-arun" ,
"id" : 20841421 ,
2021-01-21 16:10:20 +01:00
"avatar_url" : "https:\/\/avatars.githubusercontent.com\/u\/20841421?v=4" ,
2019-12-12 06:14:27 +01:00
"html_url" : "https:\/\/github.com\/its-arun"
} ,
"html_url" : "https:\/\/github.com\/its-arun\/CVE-2016-2098" ,
"description" : "CVE-2016-2098 simple POC written in bash" ,
"fork" : false ,
"created_at" : "2018-06-19T07:05:51Z" ,
2022-10-18 14:19:59 +02:00
"updated_at" : "2022-10-18T07:33:59Z" ,
2020-03-11 16:07:16 +01:00
"pushed_at" : "2020-03-11T14:30:46Z" ,
2022-10-18 14:19:59 +02:00
"stargazers_count" : 2 ,
"watchers_count" : 2 ,
"forks_count" : 2 ,
2021-09-13 23:12:57 +02:00
"allow_forking" : true ,
2021-10-06 23:13:51 +02:00
"is_template" : false ,
2022-06-28 20:20:29 +02:00
"web_commit_signoff_required" : false ,
2021-10-06 23:13:51 +02:00
"topics" : [ ] ,
2021-10-01 23:13:10 +02:00
"visibility" : "public" ,
2022-10-18 14:19:59 +02:00
"forks" : 2 ,
"watchers" : 2 ,
2019-12-09 16:05:38 +01:00
"score" : 0
2019-12-08 14:19:20 +01:00
} ,
{
"id" : 218523957 ,
"name" : "CVE-2016-2098" ,
"full_name" : "3rg1s\/CVE-2016-2098" ,
"owner" : {
"login" : "3rg1s" ,
"id" : 16364370 ,
2021-01-21 16:10:20 +01:00
"avatar_url" : "https:\/\/avatars.githubusercontent.com\/u\/16364370?v=4" ,
2019-12-12 06:14:27 +01:00
"html_url" : "https:\/\/github.com\/3rg1s"
2019-12-08 14:19:20 +01:00
} ,
"html_url" : "https:\/\/github.com\/3rg1s\/CVE-2016-2098" ,
"description" : null ,
"fork" : false ,
"created_at" : "2019-10-30T12:36:38Z" ,
"updated_at" : "2019-10-30T12:39:03Z" ,
"pushed_at" : "2019-10-30T12:39:01Z" ,
"stargazers_count" : 0 ,
"watchers_count" : 0 ,
"forks_count" : 0 ,
2021-09-13 23:12:57 +02:00
"allow_forking" : true ,
2021-10-06 23:13:51 +02:00
"is_template" : false ,
2022-06-28 20:20:29 +02:00
"web_commit_signoff_required" : false ,
2021-10-06 23:13:51 +02:00
"topics" : [
"cve" ,
"python"
] ,
2021-10-01 23:13:10 +02:00
"visibility" : "public" ,
2019-12-08 14:19:20 +01:00
"forks" : 0 ,
"watchers" : 0 ,
2019-12-09 16:05:38 +01:00
"score" : 0
2020-07-27 17:10:13 +02:00
} ,
{
"id" : 282880213 ,
"name" : "CVE-2016-2098-my-first-exploit" ,
2021-12-04 19:12:52 +01:00
"full_name" : "DanielCodex\/CVE-2016-2098-my-first-exploit" ,
2020-07-27 17:10:13 +02:00
"owner" : {
2021-12-04 19:12:52 +01:00
"login" : "DanielCodex" ,
2020-07-27 17:10:13 +02:00
"id" : 25554446 ,
2021-01-21 16:10:20 +01:00
"avatar_url" : "https:\/\/avatars.githubusercontent.com\/u\/25554446?v=4" ,
2021-12-04 19:12:52 +01:00
"html_url" : "https:\/\/github.com\/DanielCodex"
2020-07-27 17:10:13 +02:00
} ,
2021-12-04 19:12:52 +01:00
"html_url" : "https:\/\/github.com\/DanielCodex\/CVE-2016-2098-my-first-exploit" ,
2020-07-27 17:10:13 +02:00
"description" : "This exploit is remote code execution vulnerability in Ruby-on-Rails when using render on user-supplied data" ,
"fork" : false ,
"created_at" : "2020-07-27T11:38:48Z" ,
2020-07-28 11:08:53 +02:00
"updated_at" : "2020-07-28T04:39:07Z" ,
2020-07-27 17:10:13 +02:00
"pushed_at" : "2020-07-27T11:42:11Z" ,
2020-07-28 11:08:53 +02:00
"stargazers_count" : 1 ,
"watchers_count" : 1 ,
2020-07-27 17:10:13 +02:00
"forks_count" : 0 ,
2021-09-13 23:12:57 +02:00
"allow_forking" : true ,
2021-10-06 23:13:51 +02:00
"is_template" : false ,
2022-06-28 20:20:29 +02:00
"web_commit_signoff_required" : false ,
2021-10-06 23:13:51 +02:00
"topics" : [ ] ,
2021-10-01 23:13:10 +02:00
"visibility" : "public" ,
2020-07-27 17:10:13 +02:00
"forks" : 0 ,
2020-07-28 11:08:53 +02:00
"watchers" : 1 ,
2020-07-27 17:10:13 +02:00
"score" : 0
2021-04-07 11:11:09 +02:00
} ,
{
"id" : 355436102 ,
"name" : "CVE-2016-2098" ,
"full_name" : "Debalinax64\/CVE-2016-2098" ,
"owner" : {
"login" : "Debalinax64" ,
"id" : 33616847 ,
"avatar_url" : "https:\/\/avatars.githubusercontent.com\/u\/33616847?v=4" ,
"html_url" : "https:\/\/github.com\/Debalinax64"
} ,
"html_url" : "https:\/\/github.com\/Debalinax64\/CVE-2016-2098" ,
"description" : "CVE-2016-2098 - POC of RCE Ruby on Rails: Improper Input Validation (CVE-2016-2098) in bash. Remote attackers can execute arbitrary Ruby code by leveraging an application's unrestricted use of the render method." ,
"fork" : false ,
"created_at" : "2021-04-07T06:27:25Z" ,
"updated_at" : "2021-04-07T08:51:21Z" ,
"pushed_at" : "2021-04-07T08:48:58Z" ,
"stargazers_count" : 0 ,
"watchers_count" : 0 ,
"forks_count" : 0 ,
2021-09-13 23:12:57 +02:00
"allow_forking" : true ,
2021-10-06 23:13:51 +02:00
"is_template" : false ,
2022-06-28 20:20:29 +02:00
"web_commit_signoff_required" : false ,
2021-10-06 23:13:51 +02:00
"topics" : [ ] ,
2021-10-01 23:13:10 +02:00
"visibility" : "public" ,
2021-04-07 11:11:09 +02:00
"forks" : 0 ,
"watchers" : 0 ,
"score" : 0
2021-09-02 23:13:44 +02:00
} ,
{
"id" : 401752555 ,
"name" : "CVE-2016-2098" ,
2022-03-13 19:14:13 +01:00
"full_name" : "j4k0m\/CVE-2016-2098" ,
2021-09-02 23:13:44 +02:00
"owner" : {
2022-03-13 19:14:13 +01:00
"login" : "j4k0m" ,
2021-09-02 23:13:44 +02:00
"id" : 48088579 ,
"avatar_url" : "https:\/\/avatars.githubusercontent.com\/u\/48088579?v=4" ,
2022-03-13 19:14:13 +01:00
"html_url" : "https:\/\/github.com\/j4k0m"
2021-09-02 23:13:44 +02:00
} ,
2022-03-13 19:14:13 +01:00
"html_url" : "https:\/\/github.com\/j4k0m\/CVE-2016-2098" ,
2021-09-02 23:13:44 +02:00
"description" : "Remote code execution vulnerability in Ruby-on-Rails when using render on user-supplied data." ,
"fork" : false ,
"created_at" : "2021-08-31T15:25:41Z" ,
2021-09-07 17:13:16 +02:00
"updated_at" : "2021-09-07T13:17:25Z" ,
2021-09-02 23:13:44 +02:00
"pushed_at" : "2021-08-31T16:06:51Z" ,
2021-09-07 17:13:16 +02:00
"stargazers_count" : 1 ,
"watchers_count" : 1 ,
2021-09-02 23:13:44 +02:00
"forks_count" : 0 ,
2021-09-13 23:12:57 +02:00
"allow_forking" : true ,
2021-10-06 23:13:51 +02:00
"is_template" : false ,
2022-06-28 20:20:29 +02:00
"web_commit_signoff_required" : false ,
2021-10-06 23:13:51 +02:00
"topics" : [ ] ,
2021-10-01 23:13:10 +02:00
"visibility" : "public" ,
2021-09-02 23:13:44 +02:00
"forks" : 0 ,
2021-09-07 17:13:16 +02:00
"watchers" : 1 ,
2021-09-02 23:13:44 +02:00
"score" : 0
2022-09-25 02:16:29 +02:00
} ,
{
"id" : 540989582 ,
"name" : "CVE-2016-2098" ,
"full_name" : "Shakun8\/CVE-2016-2098" ,
"owner" : {
"login" : "Shakun8" ,
"id" : 87657631 ,
"avatar_url" : "https:\/\/avatars.githubusercontent.com\/u\/87657631?v=4" ,
"html_url" : "https:\/\/github.com\/Shakun8"
} ,
"html_url" : "https:\/\/github.com\/Shakun8\/CVE-2016-2098" ,
"description" : "CVE-2016-2098 POC" ,
"fork" : false ,
"created_at" : "2022-09-24T22:58:04Z" ,
2022-10-04 08:17:18 +02:00
"updated_at" : "2022-10-04T03:03:19Z" ,
2022-09-25 20:16:46 +02:00
"pushed_at" : "2022-09-25T14:34:19Z" ,
2022-09-27 08:18:02 +02:00
"stargazers_count" : 1 ,
"watchers_count" : 1 ,
2022-09-25 02:16:29 +02:00
"forks_count" : 0 ,
"allow_forking" : true ,
"is_template" : false ,
"web_commit_signoff_required" : false ,
"topics" : [ ] ,
"visibility" : "public" ,
"forks" : 0 ,
2022-09-27 08:18:02 +02:00
"watchers" : 1 ,
2022-09-25 02:16:29 +02:00
"score" : 0
2019-12-08 14:19:20 +01:00
}
]
