mirror/PoC-in-GitHub
1
0
Fork 0
mirror of https://github.com/nomi-sec/PoC-in-GitHub.git synced 2025-01-15 20:32:21 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

Auto Update 2023/02/07 00:32:52

Browse source
This commit is contained in:
motikan2010-bot 2023-02-07 09:32:52 +09:00
parent 3c6713e472
commit 207d2cff24
16 changed files with 111 additions and 56 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
2020/CVE-2020-0796.json
View file

@ -403,10 +403,10 @@
"description": "PoC for triggering buffer overflow via CVE-2020-0796",
"fork": false,
"created_at": "2020-03-12T18:34:40Z",
"updated_at": "2023-01-15T00:18:47Z",
"updated_at": "2023-02-06T20:26:08Z",
"pushed_at": "2022-11-28T04:18:42Z",
"stargazers_count": 295,
"watchers_count": 295,
"stargazers_count": 296,
"watchers_count": 296,
"has_discussions": false,
"forks_count": 115,
"allow_forking": true,
@ -420,7 +420,7 @@
],
"visibility": "public",
"forks": 115,
"watchers": 295,
"watchers": 296,
"score": 0
},
{

8
2020/CVE-2020-12695.json
View file

@ -13,10 +13,10 @@
"description": "Vulnerability checker for Callstranger (CVE-2020-12695)",
"fork": false,
"created_at": "2020-06-08T07:37:49Z",
"updated_at": "2023-02-04T01:37:31Z",
"updated_at": "2023-02-06T20:39:07Z",
"pushed_at": "2021-08-07T16:48:55Z",
"stargazers_count": 389,
"watchers_count": 389,
"stargazers_count": 388,
"watchers_count": 388,
"has_discussions": false,
"forks_count": 68,
"allow_forking": true,
@ -25,7 +25,7 @@
"topics": [],
"visibility": "public",
"forks": 68,
"watchers": 389,
"watchers": 388,
"score": 0
},
{

8
2020/CVE-2020-1350.json
View file

@ -13,10 +13,10 @@
"description": "NSE scripts to detect CVE-2020-1350 SIGRED and CVE-2020-0796 SMBGHOST, CVE-2021-21972, proxyshell, CVE-2021-34473",
"fork": false,
"created_at": "2020-03-11T17:51:29Z",
"updated_at": "2023-01-25T03:15:18Z",
"updated_at": "2023-02-06T18:20:34Z",
"pushed_at": "2021-08-16T18:16:20Z",
"stargazers_count": 142,
"watchers_count": 142,
"stargazers_count": 143,
"watchers_count": 143,
"has_discussions": false,
"forks_count": 27,
"allow_forking": true,
@ -42,7 +42,7 @@
],
"visibility": "public",
"forks": 27,
"watchers": 142,
"watchers": 143,
"score": 0
},
{

2
2021/CVE-2021-1675.json
View file

@ -42,7 +42,7 @@
"description": "C# and Impacket implementation of PrintNightmare CVE-2021-1675\/CVE-2021-34527",
"fork": false,
"created_at": "2021-06-29T17:24:14Z",
"updated_at": "2023-02-03T15:50:11Z",
"updated_at": "2023-02-06T21:26:53Z",
"pushed_at": "2021-07-20T15:28:13Z",
"stargazers_count": 1648,
"watchers_count": 1648,

8
2021/CVE-2021-21974.json
View file

@ -13,10 +13,10 @@
"description": "POC for CVE-2021-21974 VMWare ESXi RCE Exploit",
"fork": false,
"created_at": "2021-05-25T17:14:38Z",
"updated_at": "2023-02-06T17:12:17Z",
"updated_at": "2023-02-06T19:05:33Z",
"pushed_at": "2021-07-09T19:38:41Z",
"stargazers_count": 106,
"watchers_count": 106,
"stargazers_count": 107,
"watchers_count": 107,
"has_discussions": false,
"forks_count": 31,
"allow_forking": true,
@ -25,7 +25,7 @@
"topics": [],
"visibility": "public",
"forks": 31,
"watchers": 106,
"watchers": 107,
"score": 0
},
{

16
2021/CVE-2021-44228.json
View file

@ -3614,10 +3614,10 @@
"description": "A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228 ",
"fork": false,
"created_at": "2021-12-13T03:57:50Z",
"updated_at": "2023-02-06T07:16:22Z",
"updated_at": "2023-02-06T21:29:46Z",
"pushed_at": "2022-11-23T18:23:24Z",
"stargazers_count": 3182,
"watchers_count": 3182,
"stargazers_count": 3183,
"watchers_count": 3183,
"has_discussions": true,
"forks_count": 744,
"allow_forking": true,
@ -3626,7 +3626,7 @@
"topics": [],
"visibility": "public",
"forks": 744,
"watchers": 3182,
"watchers": 3183,
"score": 0
},
{
@ -4210,10 +4210,10 @@
"description": "CVE-2021-44228 - Apache log4j RCE quick test",
"fork": false,
"created_at": "2021-12-13T12:35:39Z",
"updated_at": "2022-02-01T04:18:36Z",
"updated_at": "2023-02-07T00:20:03Z",
"pushed_at": "2021-12-13T21:53:39Z",
"stargazers_count": 3,
"watchers_count": 3,
"stargazers_count": 2,
"watchers_count": 2,
"has_discussions": false,
"forks_count": 0,
"allow_forking": true,
@ -4222,7 +4222,7 @@
"topics": [],
"visibility": "public",
"forks": 0,
"watchers": 3,
"watchers": 2,
"score": 0
},
{

4
2022/CVE-2022-24706.json
View file

@ -18,13 +18,13 @@
"stargazers_count": 26,
"watchers_count": 26,
"has_discussions": false,
"forks_count": 10,
"forks_count": 11,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 10,
"forks": 11,
"watchers": 26,
"score": 0
},

4
2022/CVE-2022-29072.json
View file

@ -18,13 +18,13 @@
"stargazers_count": 680,
"watchers_count": 680,
"has_discussions": false,
"forks_count": 109,
"forks_count": 108,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 109,
"forks": 108,
"watchers": 680,
"score": 0
},

8
2022/CVE-2022-33679.json
View file

@ -13,10 +13,10 @@
"description": "One day based on https:\/\/googleprojectzero.blogspot.com\/2022\/10\/rc4-is-still-considered-harmful.html",
"fork": false,
"created_at": "2022-11-02T18:38:01Z",
"updated_at": "2023-02-06T08:47:00Z",
"updated_at": "2023-02-06T20:58:20Z",
"pushed_at": "2022-12-13T15:26:57Z",
"stargazers_count": 358,
"watchers_count": 358,
"stargazers_count": 359,
"watchers_count": 359,
"has_discussions": false,
"forks_count": 65,
"allow_forking": true,
@ -25,7 +25,7 @@
"topics": [],
"visibility": "public",
"forks": 65,
"watchers": 358,
"watchers": 359,
"score": 0
},
{

4
2022/CVE-2022-38374.json
View file

@ -18,13 +18,13 @@
"stargazers_count": 9,
"watchers_count": 9,
"has_discussions": false,
"forks_count": 4,
"forks_count": 5,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 4,
"forks": 5,
"watchers": 9,
"score": 0
}

4
2022/CVE-2022-40684.json
View file

@ -47,13 +47,13 @@
"stargazers_count": 82,
"watchers_count": 82,
"has_discussions": false,
"forks_count": 32,
"forks_count": 31,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 32,
"forks": 31,
"watchers": 82,
"score": 0
},

5
2022/CVE-2022-42046.json
View file

@ -13,7 +13,7 @@
"description": "CVE-2022-42046 Proof of Concept of wfshbr64.sys local privilege escalation via DKOM",
"fork": false,
"created_at": "2022-08-17T16:45:13Z",
"updated_at": "2023-02-05T21:41:00Z",
"updated_at": "2023-02-06T23:37:11Z",
"pushed_at": "2022-12-24T10:29:08Z",
"stargazers_count": 144,
"watchers_count": 144,
@ -23,7 +23,8 @@
"is_template": false,
"web_commit_signoff_required": false,
"topics": [
"cve-2022-42046"
"cve-2022-42046",
"cve-2022-48019"
],
"visibility": "public",
"forks": 22,

16
2022/CVE-2022-44268.json
View file

@ -190,10 +190,10 @@
"description": "A PoC for the CVE-2022-44268 - ImageMagick arbitrary file read",
"fork": false,
"created_at": "2023-02-05T18:42:27Z",
"updated_at": "2023-02-06T18:05:35Z",
"updated_at": "2023-02-06T20:44:28Z",
"pushed_at": "2023-02-05T19:35:03Z",
"stargazers_count": 60,
"watchers_count": 60,
"stargazers_count": 61,
"watchers_count": 61,
"has_discussions": false,
"forks_count": 10,
"allow_forking": true,
@ -202,7 +202,7 @@
"topics": [],
"visibility": "public",
"forks": 10,
"watchers": 60,
"watchers": 61,
"score": 0
},
{
@ -219,10 +219,10 @@
"description": "ImageMagick LFI PoC [CVE-2022-44268]",
"fork": false,
"created_at": "2023-02-06T10:44:43Z",
"updated_at": "2023-02-06T15:22:09Z",
"updated_at": "2023-02-06T18:52:36Z",
"pushed_at": "2023-02-06T10:48:56Z",
"stargazers_count": 5,
"watchers_count": 5,
"stargazers_count": 6,
"watchers_count": 6,
"has_discussions": false,
"forks_count": 0,
"allow_forking": true,
@ -235,7 +235,7 @@
],
"visibility": "public",
"forks": 0,
"watchers": 5,
"watchers": 6,
"score": 0
},
{

31
2022/CVE-2022-4510.json Normal file
View file

@ -0,0 +1,31 @@
[
{
"id": 598309338,
"name": "CVE-2022-4510",
"full_name": "electr0sm0g\/CVE-2022-4510",
"owner": {
"login": "electr0sm0g",
"id": 8340491,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/8340491?v=4",
"html_url": "https:\/\/github.com\/electr0sm0g"
},
"html_url": "https:\/\/github.com\/electr0sm0g\/CVE-2022-4510",
"description": "Binwalk Remote Command Execution",
"fork": false,
"created_at": "2023-02-06T20:53:49Z",
"updated_at": "2023-02-06T22:19:54Z",
"pushed_at": "2023-02-06T20:54:33Z",
"stargazers_count": 1,
"watchers_count": 1,
"has_discussions": false,
"forks_count": 0,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 0,
"watchers": 1,
"score": 0
}
]

12
2023/CVE-2023-21608.json
View file

@ -13,12 +13,12 @@
"description": "Adobe Acrobat Reader - CVE-2023-21608 - Remote Code Execution Exploit",
"fork": false,
"created_at": "2023-01-30T12:57:48Z",
"updated_at": "2023-02-06T17:26:47Z",
"updated_at": "2023-02-06T23:42:26Z",
"pushed_at": "2023-02-03T03:07:59Z",
"stargazers_count": 106,
"watchers_count": 106,
"stargazers_count": 107,
"watchers_count": 107,
"has_discussions": false,
"forks_count": 21,
"forks_count": 23,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
@ -34,8 +34,8 @@
"use-after-free"
],
"visibility": "public",
"forks": 21,
"watchers": 106,
"forks": 23,
"watchers": 107,
"score": 0
},
{

29
README.md
View file

@ -65,7 +65,12 @@ Lexmark products through 2023-01-10 have Improper Control of Interaction Frequen
- [t3l3machus/CVE-2023-22960](https://github.com/t3l3machus/CVE-2023-22960)
- [manas3c/CVE-2023-22960](https://github.com/manas3c/CVE-2023-22960)
### CVE-2023-23333
### CVE-2023-23333 (2023-02-06)
<code>
There is a command injection vulnerability in SolarView Compact through 6.00, attackers can execute commands by bypassing internal restrictions through downloader.php.
</code>
- [Timorlover/CVE-2023-23333](https://github.com/Timorlover/CVE-2023-23333)
### CVE-2023-23488 (2023-01-20)
@ -904,6 +909,14 @@ A vulnerability classified as problematic was found in SourceCodester Sanitizati
- [Urban4/CVE-2022-3992](https://github.com/Urban4/CVE-2022-3992)
### CVE-2022-4510 (2023-01-25)
<code>
A path traversal vulnerability was identified in ReFirm Labs binwalk from version 2.1.2b through 2.3.3 included. By crafting a malicious PFS filesystem file, an attacker can get binwalk's PFS extractor to extract files at arbitrary locations when binwalk is run in extraction mode (-e option). Remote code execution can be achieved by building a PFS filesystem that, upon extraction, would extract a malicious binwalk module into the folder .config/binwalk/plugins. This vulnerability is associated with program files src/binwalk/plugins/unpfs.py. This issue affects binwalk from 2.1.2b through 2.3.3 included.
</code>
- [electr0sm0g/CVE-2022-4510](https://github.com/electr0sm0g/CVE-2022-4510)
### CVE-2022-5561
- [Kvi74/CVE-2022-5561](https://github.com/Kvi74/CVE-2022-5561)
@ -5230,7 +5243,12 @@ Tenda AC18 V15.03.05.19 is vulnerable to Buffer Overflow via function formSetWif
- [JBalanza/CVE-2022-44215](https://github.com/JBalanza/CVE-2022-44215)
- [wh-gov/CVE-2022-44215](https://github.com/wh-gov/CVE-2022-44215)
### CVE-2022-44268
### CVE-2022-44268 (2023-02-06)
<code>
ImageMagick 7.1.0-49 is vulnerable to Information Disclosure. When it parses a PNG image (e.g., for resize), the resulting image could have embedded the content of an arbitrary. file (if the magick binary has permissions to read it).
</code>
- [duc-nt/CVE-2022-44268-ImageMagick-Arbitrary-File-Read-PoC](https://github.com/duc-nt/CVE-2022-44268-ImageMagick-Arbitrary-File-Read-PoC)
- [y1nglamore/CVE-2022-44268-ImageMagick-Vulnerable-Docker-Environment](https://github.com/y1nglamore/CVE-2022-44268-ImageMagick-Vulnerable-Docker-Environment)
- [agathanon/cve-2022-44268](https://github.com/agathanon/cve-2022-44268)
@ -5564,7 +5582,12 @@ TP-Link TL-WR902AC devices through V3 0.9.1 allow remote authenticated attackers
- [ryan412/CVE-2022-48197](https://github.com/ryan412/CVE-2022-48197)
### CVE-2022-48311
### CVE-2022-48311 (2023-02-06)
<code>
**UNSUPPORTED WHEN ASSIGNED** Cross Site Scripting (XSS) in HP Deskjet 2540 series printer Firmware Version CEP1FN1418BR and Product Model Number A9U23B allows authenticated attacker to inject their own script into the page via HTTP configuration page. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
</code>
- [swzhouu/CVE-2022-48311](https://github.com/swzhouu/CVE-2022-48311)