mirror/PoC-in-GitHub
1
0
Fork 0
mirror of https://github.com/nomi-sec/PoC-in-GitHub.git synced 2025-01-15 20:32:21 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

Auto Update 2023/01/15 18:31:06

Browse source
This commit is contained in:
motikan2010-bot 2023-01-16 03:31:06 +09:00
parent 5b81caf8f2
commit 5e1a36bc53
37 changed files with 100 additions and 604 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
2018/CVE-2018-5955.json
View file

@ -42,10 +42,10 @@
"description": "一款功能强大的漏洞扫描器子域名爆破使用aioDNSasyncio异步快速扫描覆盖目标全方位资产进行批量漏洞扫描中间件信息收集自动收集ip代理探测Waf信息时自动使用来保护本机真实Ip在本机Ip被Waf杀死后自动切换代理Ip进行扫描Waf信息收集(国内外100+款waf信息)包括安全狗云锁阿里云云盾腾讯云等提供部分已知waf bypass 方案,中间件漏洞检测(Thinkphp,weblogic等 CVE-2018-5955,CVE-2018-12613,CVE-2018-11759等)支持SQL注入, XSS, 命令执行,文件包含, ssrf 漏洞扫描, 支持自定义漏洞邮箱推送功能",
"fork": false,
"created_at": "2019-12-21T22:45:55Z",
"updated_at": "2023-01-09T01:21:35Z",
"updated_at": "2023-01-15T12:37:31Z",
"pushed_at": "2020-01-05T21:46:25Z",
"stargazers_count": 588,
"watchers_count": 588,
"stargazers_count": 587,
"watchers_count": 587,
"has_discussions": false,
"forks_count": 129,
"allow_forking": true,
@ -67,7 +67,7 @@
],
"visibility": "public",
"forks": 129,
"watchers": 588,
"watchers": 587,
"score": 0
}
]

4
2018/CVE-2018-9948.json
View file

@ -18,13 +18,13 @@
"stargazers_count": 5,
"watchers_count": 5,
"has_discussions": false,
"forks_count": 2,
"forks_count": 3,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 2,
"forks": 3,
"watchers": 5,
"score": 0
},

8
2019/CVE-2019-0708.json
View file

@ -2442,10 +2442,10 @@
"description": "rce exploit , made to work with pocsuite3",
"fork": false,
"created_at": "2019-08-17T17:23:53Z",
"updated_at": "2023-01-14T11:30:43Z",
"updated_at": "2023-01-15T12:50:30Z",
"pushed_at": "2019-08-19T02:52:11Z",
"stargazers_count": 117,
"watchers_count": 117,
"stargazers_count": 118,
"watchers_count": 118,
"has_discussions": false,
"forks_count": 60,
"allow_forking": true,
@ -2454,7 +2454,7 @@
"topics": [],
"visibility": "public",
"forks": 60,
"watchers": 117,
"watchers": 118,
"score": 0
},
{

4
2019/CVE-2019-7304.json
View file

@ -18,7 +18,7 @@
"stargazers_count": 627,
"watchers_count": 627,
"has_discussions": false,
"forks_count": 161,
"forks_count": 162,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
@ -28,7 +28,7 @@
"security"
],
"visibility": "public",
"forks": 161,
"forks": 162,
"watchers": 627,
"score": 0
},

12
2020/CVE-2020-0688.json
View file

@ -13,12 +13,12 @@
"description": "cve-2020-0688",
"fork": false,
"created_at": "2020-02-25T23:44:16Z",
"updated_at": "2022-11-09T18:06:27Z",
"updated_at": "2023-01-15T12:48:00Z",
"pushed_at": "2020-02-26T00:58:39Z",
"stargazers_count": 157,
"watchers_count": 157,
"stargazers_count": 158,
"watchers_count": 158,
"has_discussions": false,
"forks_count": 50,
"forks_count": 51,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
@ -26,8 +26,8 @@
"cve-2020-0688"
],
"visibility": "public",
"forks": 50,
"watchers": 157,
"forks": 51,
"watchers": 158,
"score": 0
},
{

4
2020/CVE-2020-6519.json
View file

@ -18,13 +18,13 @@
"stargazers_count": 27,
"watchers_count": 27,
"has_discussions": false,
"forks_count": 17,
"forks_count": 18,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 17,
"forks": 18,
"watchers": 27,
"score": 0
}

35
2021/CVE-2021-1056.json
View file

@ -1,35 +0,0 @@
[
{
"id": 327884232,
"name": "CVE-2021-1056",
"full_name": "pokerfaceSad\/CVE-2021-1056",
"owner": {
"login": "pokerfaceSad",
"id": 22297037,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/22297037?v=4",
"html_url": "https:\/\/github.com\/pokerfaceSad"
},
"html_url": "https:\/\/github.com\/pokerfaceSad\/CVE-2021-1056",
"description": "PoC for CVE-2021-1056, related to GPU Container Security",
"fork": false,
"created_at": "2021-01-08T11:29:48Z",
"updated_at": "2022-06-22T02:08:32Z",
"pushed_at": "2021-01-12T09:21:02Z",
"stargazers_count": 14,
"watchers_count": 14,
"has_discussions": false,
"forks_count": 6,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [
"cve-2021-1056",
"gpu-container",
"kubernetes-clusters"
],
"visibility": "public",
"forks": 6,
"watchers": 14,
"score": 0
}
]

31
2021/CVE-2021-1647.json
View file

@ -1,31 +0,0 @@
[
{
"id": 332213147,
"name": "cve-2021-1647",
"full_name": "findcool\/cve-2021-1647",
"owner": {
"login": "findcool",
"id": 73280456,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/73280456?v=4",
"html_url": "https:\/\/github.com\/findcool"
},
"html_url": "https:\/\/github.com\/findcool\/cve-2021-1647",
"description": null,
"fork": false,
"created_at": "2021-01-23T13:10:35Z",
"updated_at": "2021-01-23T13:10:37Z",
"pushed_at": "2021-01-20T14:55:37Z",
"stargazers_count": 0,
"watchers_count": 0,
"has_discussions": false,
"forks_count": 5,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 5,
"watchers": 0,
"score": 0
}
]

63
2021/CVE-2021-2109.json
View file

@ -1,67 +1,4 @@
[
{
"id": 331847444,
"name": "CVE-2021-2109",
"full_name": "Al1ex\/CVE-2021-2109",
"owner": {
"login": "Al1ex",
"id": 38161463,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/38161463?v=4",
"html_url": "https:\/\/github.com\/Al1ex"
},
"html_url": "https:\/\/github.com\/Al1ex\/CVE-2021-2109",
"description": "CVE-2021-2109 && Weblogic Server RCE via JNDI",
"fork": false,
"created_at": "2021-01-22T05:37:11Z",
"updated_at": "2022-11-21T02:09:56Z",
"pushed_at": "2021-01-22T05:52:26Z",
"stargazers_count": 29,
"watchers_count": 29,
"has_discussions": false,
"forks_count": 9,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [
"cve-2021-2109",
"jndi",
"rce",
"weblogic"
],
"visibility": "public",
"forks": 9,
"watchers": 29,
"score": 0
},
{
"id": 331873303,
"name": "CVE-2021-2109",
"full_name": "rabbitsafe\/CVE-2021-2109",
"owner": {
"login": "rabbitsafe",
"id": 33046073,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/33046073?v=4",
"html_url": "https:\/\/github.com\/rabbitsafe"
},
"html_url": "https:\/\/github.com\/rabbitsafe\/CVE-2021-2109",
"description": null,
"fork": false,
"created_at": "2021-01-22T07:43:46Z",
"updated_at": "2022-11-09T18:10:56Z",
"pushed_at": "2021-01-22T08:34:11Z",
"stargazers_count": 10,
"watchers_count": 10,
"has_discussions": false,
"forks_count": 5,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 5,
"watchers": 10,
"score": 0
},
{
"id": 367086891,
"name": "CVE-2021-2109_poc",

29
2021/CVE-2021-2119.json
View file

@ -1,33 +1,4 @@
[
{
"id": 329979678,
"name": "RWCTF21-VirtualBox-61-escape",
"full_name": "Sauercloud\/RWCTF21-VirtualBox-61-escape",
"owner": {
"login": "Sauercloud",
"id": 41395211,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/41395211?v=4",
"html_url": "https:\/\/github.com\/Sauercloud"
},
"html_url": "https:\/\/github.com\/Sauercloud\/RWCTF21-VirtualBox-61-escape",
"description": "0day VirtualBox 6.1.2 Escape for RealWorld CTF 2020\/2021 CVE-2021-2119",
"fork": false,
"created_at": "2021-01-15T17:32:24Z",
"updated_at": "2023-01-13T22:43:15Z",
"pushed_at": "2021-01-23T01:25:22Z",
"stargazers_count": 129,
"watchers_count": 129,
"has_discussions": false,
"forks_count": 21,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 21,
"watchers": 129,
"score": 0
},
{
"id": 471867550,
"name": "Sauercloude",

4
2021/CVE-2021-24084.json
View file

@ -47,13 +47,13 @@
"stargazers_count": 35,
"watchers_count": 35,
"has_discussions": false,
"forks_count": 13,
"forks_count": 14,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 13,
"forks": 14,
"watchers": 35,
"score": 0
}

58
2021/CVE-2021-3019.json
View file

@ -1,33 +1,4 @@
[
{
"id": 328097281,
"name": "CVE-2021-3019",
"full_name": "B1anda0\/CVE-2021-3019",
"owner": {
"login": "B1anda0",
"id": 74232513,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/74232513?v=4",
"html_url": "https:\/\/github.com\/B1anda0"
},
"html_url": "https:\/\/github.com\/B1anda0\/CVE-2021-3019",
"description": "lanproxy 目录遍历漏洞批量检测 (CVE-2021-3019)",
"fork": false,
"created_at": "2021-01-09T07:11:38Z",
"updated_at": "2021-10-24T05:59:19Z",
"pushed_at": "2021-01-09T07:14:26Z",
"stargazers_count": 4,
"watchers_count": 4,
"has_discussions": false,
"forks_count": 6,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 6,
"watchers": 4,
"score": 0
},
{
"id": 328546705,
"name": "CVE-2021-3019",
@ -57,35 +28,6 @@
"watchers": 14,
"score": 0
},
{
"id": 329537345,
"name": "CVE-2021-3019",
"full_name": "Maksim-venus\/CVE-2021-3019",
"owner": {
"login": "Maksim-venus",
"id": 35008035,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/35008035?v=4",
"html_url": "https:\/\/github.com\/Maksim-venus"
},
"html_url": "https:\/\/github.com\/Maksim-venus\/CVE-2021-3019",
"description": "lanproxy 目录遍历漏洞批量检测用户名密码POC (CVE-2021-3019)",
"fork": false,
"created_at": "2021-01-14T07:19:21Z",
"updated_at": "2021-11-25T06:50:40Z",
"pushed_at": "2021-01-14T07:52:31Z",
"stargazers_count": 3,
"watchers_count": 3,
"has_discussions": false,
"forks_count": 2,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 2,
"watchers": 3,
"score": 0
},
{
"id": 346618078,
"name": "CVE-2021-3019",

87
2021/CVE-2021-3129.json
View file

@ -28,93 +28,6 @@
"watchers": 230,
"score": 0
},
{
"id": 331843308,
"name": "CVE-2021-3129",
"full_name": "SNCKER\/CVE-2021-3129",
"owner": {
"login": "SNCKER",
"id": 49559334,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/49559334?v=4",
"html_url": "https:\/\/github.com\/SNCKER"
},
"html_url": "https:\/\/github.com\/SNCKER\/CVE-2021-3129",
"description": "Laravel debug rce",
"fork": false,
"created_at": "2021-01-22T05:12:21Z",
"updated_at": "2022-12-11T03:51:44Z",
"pushed_at": "2021-01-24T05:28:07Z",
"stargazers_count": 116,
"watchers_count": 116,
"has_discussions": false,
"forks_count": 53,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 53,
"watchers": 116,
"score": 0
},
{
"id": 332682252,
"name": "laravel-CVE-2021-3129-EXP",
"full_name": "SecPros-Team\/laravel-CVE-2021-3129-EXP",
"owner": {
"login": "SecPros-Team",
"id": 77960183,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/77960183?v=4",
"html_url": "https:\/\/github.com\/SecPros-Team"
},
"html_url": "https:\/\/github.com\/SecPros-Team\/laravel-CVE-2021-3129-EXP",
"description": null,
"fork": false,
"created_at": "2021-01-25T08:42:28Z",
"updated_at": "2023-01-11T11:36:47Z",
"pushed_at": "2021-01-25T08:49:59Z",
"stargazers_count": 50,
"watchers_count": 50,
"has_discussions": false,
"forks_count": 30,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 30,
"watchers": 50,
"score": 0
},
{
"id": 333316985,
"name": "Laravel_CVE-2021-3129_EXP",
"full_name": "crisprss\/Laravel_CVE-2021-3129_EXP",
"owner": {
"login": "crisprss",
"id": 55953931,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/55953931?v=4",
"html_url": "https:\/\/github.com\/crisprss"
},
"html_url": "https:\/\/github.com\/crisprss\/Laravel_CVE-2021-3129_EXP",
"description": null,
"fork": false,
"created_at": "2021-01-27T05:44:52Z",
"updated_at": "2022-11-09T18:11:00Z",
"pushed_at": "2021-01-27T06:23:34Z",
"stargazers_count": 17,
"watchers_count": 17,
"has_discussions": false,
"forks_count": 7,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 7,
"watchers": 17,
"score": 0
},
{
"id": 333380316,
"name": "CVE-2021-3129_exploit",

31
2021/CVE-2021-3130.json
View file

@ -1,31 +0,0 @@
[
{
"id": 331557374,
"name": "CVE-2021-3130",
"full_name": "jet-pentest\/CVE-2021-3130",
"owner": {
"login": "jet-pentest",
"id": 71512502,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/71512502?v=4",
"html_url": "https:\/\/github.com\/jet-pentest"
},
"html_url": "https:\/\/github.com\/jet-pentest\/CVE-2021-3130",
"description": null,
"fork": false,
"created_at": "2021-01-21T08:04:32Z",
"updated_at": "2021-02-14T09:24:07Z",
"pushed_at": "2021-01-21T12:31:34Z",
"stargazers_count": 1,
"watchers_count": 1,
"has_discussions": false,
"forks_count": 0,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 0,
"watchers": 1,
"score": 0
}
]

31
2021/CVE-2021-3131.json
View file

@ -1,31 +0,0 @@
[
{
"id": 329230328,
"name": "CVE-2021-3131",
"full_name": "jet-pentest\/CVE-2021-3131",
"owner": {
"login": "jet-pentest",
"id": 71512502,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/71512502?v=4",
"html_url": "https:\/\/github.com\/jet-pentest"
},
"html_url": "https:\/\/github.com\/jet-pentest\/CVE-2021-3131",
"description": "CVE-2021-3131",
"fork": false,
"created_at": "2021-01-13T07:41:25Z",
"updated_at": "2022-12-19T10:01:54Z",
"pushed_at": "2021-01-13T07:54:38Z",
"stargazers_count": 1,
"watchers_count": 1,
"has_discussions": false,
"forks_count": 1,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 1,
"watchers": 1,
"score": 0
}
]

58
2021/CVE-2021-3156.json
View file

@ -1,33 +1,4 @@
[
{
"id": 333199828,
"name": "CVE-2021-3156",
"full_name": "mr-r3b00t\/CVE-2021-3156",
"owner": {
"login": "mr-r3b00t",
"id": 14963690,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/14963690?v=4",
"html_url": "https:\/\/github.com\/mr-r3b00t"
},
"html_url": "https:\/\/github.com\/mr-r3b00t\/CVE-2021-3156",
"description": null,
"fork": false,
"created_at": "2021-01-26T19:53:04Z",
"updated_at": "2022-10-10T22:30:28Z",
"pushed_at": "2021-01-26T20:09:53Z",
"stargazers_count": 35,
"watchers_count": 35,
"has_discussions": false,
"forks_count": 32,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 32,
"watchers": 35,
"score": 0
},
{
"id": 333450928,
"name": "sudo_cve-2021-3156",
@ -86,35 +57,6 @@
"watchers": 116,
"score": 0
},
{
"id": 333492305,
"name": "CVE-2021-3156",
"full_name": "unauth401\/CVE-2021-3156",
"owner": {
"login": "unauth401",
"id": 61272656,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/61272656?v=4",
"html_url": "https:\/\/github.com\/unauth401"
},
"html_url": "https:\/\/github.com\/unauth401\/CVE-2021-3156",
"description": null,
"fork": false,
"created_at": "2021-01-27T16:35:43Z",
"updated_at": "2022-11-09T18:11:00Z",
"pushed_at": "2021-01-27T15:19:23Z",
"stargazers_count": 2,
"watchers_count": 2,
"has_discussions": false,
"forks_count": 25,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 25,
"watchers": 2,
"score": 0
},
{
"id": 333557918,
"name": "CVE-2021-3156",

31
2021/CVE-2021-3164.json
View file

@ -1,31 +0,0 @@
[
{
"id": 331173610,
"name": "cve-2021-3164",
"full_name": "rmccarth\/cve-2021-3164",
"owner": {
"login": "rmccarth",
"id": 36937649,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/36937649?v=4",
"html_url": "https:\/\/github.com\/rmccarth"
},
"html_url": "https:\/\/github.com\/rmccarth\/cve-2021-3164",
"description": "Church Rota version 2.6.4 is vulnerable to authenticated remote code execution. The user does not need to have file upload permission in order to upload and execute an arbitrary file. The application is written primarily with PHP so we use PHP in our PoC ",
"fork": false,
"created_at": "2021-01-20T02:48:46Z",
"updated_at": "2021-10-16T06:43:27Z",
"pushed_at": "2021-01-20T02:49:27Z",
"stargazers_count": 2,
"watchers_count": 2,
"has_discussions": false,
"forks_count": 0,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 0,
"watchers": 2,
"score": 0
}
]

8
2021/CVE-2021-33959.json
View file

@ -13,10 +13,10 @@
"description": "CVE-2021-33959",
"fork": false,
"created_at": "2023-01-15T09:47:48Z",
"updated_at": "2023-01-15T10:01:41Z",
"updated_at": "2023-01-15T14:56:38Z",
"pushed_at": "2023-01-15T09:51:57Z",
"stargazers_count": 1,
"watchers_count": 1,
"stargazers_count": 2,
"watchers_count": 2,
"has_discussions": false,
"forks_count": 0,
"allow_forking": true,
@ -25,7 +25,7 @@
"topics": [],
"visibility": "public",
"forks": 0,
"watchers": 1,
"watchers": 2,
"score": 0
}
]

8
2021/CVE-2021-4034.json
View file

@ -1919,10 +1919,10 @@
"description": "Proof of concept for pwnkit vulnerability",
"fork": false,
"created_at": "2022-01-27T14:43:57Z",
"updated_at": "2023-01-12T17:38:45Z",
"updated_at": "2023-01-15T15:23:27Z",
"pushed_at": "2023-01-12T19:23:29Z",
"stargazers_count": 328,
"watchers_count": 328,
"stargazers_count": 329,
"watchers_count": 329,
"has_discussions": false,
"forks_count": 41,
"allow_forking": true,
@ -1931,7 +1931,7 @@
"topics": [],
"visibility": "public",
"forks": 41,
"watchers": 328,
"watchers": 329,
"score": 0
},
{

8
2021/CVE-2021-42278.json
View file

@ -13,10 +13,10 @@
"description": "Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user ",
"fork": false,
"created_at": "2021-12-11T15:10:30Z",
"updated_at": "2023-01-12T08:18:38Z",
"updated_at": "2023-01-15T13:10:20Z",
"pushed_at": "2022-07-10T22:23:13Z",
"stargazers_count": 867,
"watchers_count": 867,
"stargazers_count": 868,
"watchers_count": 868,
"has_discussions": false,
"forks_count": 181,
"allow_forking": true,
@ -30,7 +30,7 @@
],
"visibility": "public",
"forks": 181,
"watchers": 867,
"watchers": 868,
"score": 0
},
{

2
2021/CVE-2021-43798.json
View file

@ -524,7 +524,7 @@
"description": "This is a proof-of-concept exploit for Grafana's Unauthorized Arbitrary File Read Vulnerability (CVE-2021-43798).",
"fork": false,
"created_at": "2021-12-11T18:49:30Z",
"updated_at": "2022-12-31T21:27:39Z",
"updated_at": "2023-01-15T16:38:22Z",
"pushed_at": "2021-12-11T19:10:03Z",
"stargazers_count": 15,
"watchers_count": 15,

8
2022/CVE-2022-0739.json
View file

@ -13,10 +13,10 @@
"description": "Proof-of-Concept exploit (SQLI BookingPress before 1.0.11)",
"fork": false,
"created_at": "2022-10-30T19:32:15Z",
"updated_at": "2022-12-21T10:41:54Z",
"updated_at": "2023-01-15T13:23:05Z",
"pushed_at": "2022-10-30T19:38:00Z",
"stargazers_count": 4,
"watchers_count": 4,
"stargazers_count": 5,
"watchers_count": 5,
"has_discussions": false,
"forks_count": 0,
"allow_forking": true,
@ -25,7 +25,7 @@
"topics": [],
"visibility": "public",
"forks": 0,
"watchers": 4,
"watchers": 5,
"score": 0
},
{

8
2022/CVE-2022-0847.json
View file

@ -100,10 +100,10 @@
"description": "CVE-2022-0847-DirtyPipe-Exploit CVE-2022-0847 是存在于 Linux内核 5.8 及之后版本中的本地提权漏洞。攻击者通过利用此漏洞,可覆盖重写任意可读文件中的数据,从而可将普通权限的用户提升到特权 root。 CVE-2022-0847 的漏洞原理类似于 CVE-2016-5195 脏牛漏洞Dirty Cow但它更容易被利用。漏洞作者将此漏洞命名为“Dirty Pipe”",
"fork": false,
"created_at": "2022-03-07T18:36:50Z",
"updated_at": "2023-01-12T06:20:35Z",
"updated_at": "2023-01-15T14:53:15Z",
"pushed_at": "2023-01-11T08:25:46Z",
"stargazers_count": 224,
"watchers_count": 224,
"stargazers_count": 225,
"watchers_count": 225,
"has_discussions": false,
"forks_count": 77,
"allow_forking": true,
@ -112,7 +112,7 @@
"topics": [],
"visibility": "public",
"forks": 77,
"watchers": 224,
"watchers": 225,
"score": 0
},
{

8
2022/CVE-2022-1015.json
View file

@ -13,10 +13,10 @@
"description": "Local privilege escalation PoC for Linux kernel CVE-2022-1015",
"fork": false,
"created_at": "2022-04-02T03:27:11Z",
"updated_at": "2022-11-26T15:31:38Z",
"updated_at": "2023-01-15T12:28:18Z",
"pushed_at": "2022-04-03T01:36:45Z",
"stargazers_count": 173,
"watchers_count": 173,
"stargazers_count": 174,
"watchers_count": 174,
"has_discussions": false,
"forks_count": 35,
"allow_forking": true,
@ -25,7 +25,7 @@
"topics": [],
"visibility": "public",
"forks": 35,
"watchers": 173,
"watchers": 174,
"score": 0
},
{

2
2022/CVE-2022-20452.json
View file

@ -13,7 +13,7 @@
"description": "Exploit for CVE-2022-20452, privilege escalation on Android from installed app to system app (or another app) via LazyValue using Parcel after recycle()",
"fork": false,
"created_at": "2023-01-10T16:24:51Z",
"updated_at": "2023-01-15T10:21:50Z",
"updated_at": "2023-01-15T17:20:27Z",
"pushed_at": "2023-01-10T16:25:49Z",
"stargazers_count": 105,
"watchers_count": 105,

8
2022/CVE-2022-22274.json
View file

@ -13,10 +13,10 @@
"description": null,
"fork": false,
"created_at": "2023-01-14T17:15:53Z",
"updated_at": "2023-01-14T17:18:20Z",
"updated_at": "2023-01-15T13:26:44Z",
"pushed_at": "2023-01-14T17:18:51Z",
"stargazers_count": 0,
"watchers_count": 0,
"stargazers_count": 1,
"watchers_count": 1,
"has_discussions": false,
"forks_count": 0,
"allow_forking": true,
@ -25,7 +25,7 @@
"topics": [],
"visibility": "public",
"forks": 0,
"watchers": 0,
"watchers": 1,
"score": 0
}
]

4
2022/CVE-2022-22980.json
View file

@ -134,13 +134,13 @@
"stargazers_count": 5,
"watchers_count": 5,
"has_discussions": false,
"forks_count": 2,
"forks_count": 3,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 2,
"forks": 3,
"watchers": 5,
"score": 0
},

8
2022/CVE-2022-24644.json
View file

@ -13,10 +13,10 @@
"description": null,
"fork": false,
"created_at": "2022-03-04T18:26:35Z",
"updated_at": "2023-01-13T08:38:34Z",
"updated_at": "2023-01-15T13:44:00Z",
"pushed_at": "2023-01-13T08:38:28Z",
"stargazers_count": 0,
"watchers_count": 0,
"stargazers_count": 1,
"watchers_count": 1,
"has_discussions": false,
"forks_count": 0,
"allow_forking": true,
@ -25,7 +25,7 @@
"topics": [],
"visibility": "public",
"forks": 0,
"watchers": 0,
"watchers": 1,
"score": 0
},
{

4
2022/CVE-2022-28672.json
View file

@ -18,7 +18,7 @@
"stargazers_count": 101,
"watchers_count": 101,
"has_discussions": false,
"forks_count": 20,
"forks_count": 21,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
@ -35,7 +35,7 @@
"use-after-free"
],
"visibility": "public",
"forks": 20,
"forks": 21,
"watchers": 101,
"score": 0
},

8
2022/CVE-2022-28944.json
View file

@ -13,10 +13,10 @@
"description": null,
"fork": false,
"created_at": "2022-05-10T17:52:31Z",
"updated_at": "2023-01-13T08:39:30Z",
"updated_at": "2023-01-15T13:44:08Z",
"pushed_at": "2023-01-13T08:39:25Z",
"stargazers_count": 0,
"watchers_count": 0,
"stargazers_count": 1,
"watchers_count": 1,
"has_discussions": false,
"forks_count": 0,
"allow_forking": true,
@ -25,7 +25,7 @@
"topics": [],
"visibility": "public",
"forks": 0,
"watchers": 0,
"watchers": 1,
"score": 0
}
]

8
2022/CVE-2022-33679.json
View file

@ -13,10 +13,10 @@
"description": "One day based on https:\/\/googleprojectzero.blogspot.com\/2022\/10\/rc4-is-still-considered-harmful.html",
"fork": false,
"created_at": "2022-11-02T18:38:01Z",
"updated_at": "2023-01-14T23:15:33Z",
"updated_at": "2023-01-15T17:36:46Z",
"pushed_at": "2022-12-13T15:26:57Z",
"stargazers_count": 354,
"watchers_count": 354,
"stargazers_count": 355,
"watchers_count": 355,
"has_discussions": false,
"forks_count": 65,
"allow_forking": true,
@ -25,7 +25,7 @@
"topics": [],
"visibility": "public",
"forks": 65,
"watchers": 354,
"watchers": 355,
"score": 0
},
{

8
2022/CVE-2022-3656.json
View file

@ -13,10 +13,10 @@
"description": null,
"fork": false,
"created_at": "2023-01-13T03:26:14Z",
"updated_at": "2023-01-15T10:13:38Z",
"updated_at": "2023-01-15T13:46:06Z",
"pushed_at": "2023-01-13T03:35:05Z",
"stargazers_count": 28,
"watchers_count": 28,
"stargazers_count": 29,
"watchers_count": 29,
"has_discussions": false,
"forks_count": 7,
"allow_forking": true,
@ -25,7 +25,7 @@
"topics": [],
"visibility": "public",
"forks": 7,
"watchers": 28,
"watchers": 29,
"score": 0
}
]

8
2022/CVE-2022-45771.json
View file

@ -13,10 +13,10 @@
"description": "Pwndoc local file inclusion to remote code execution of Node.js code on the server",
"fork": false,
"created_at": "2022-12-13T10:03:14Z",
"updated_at": "2023-01-05T09:01:50Z",
"updated_at": "2023-01-15T14:51:04Z",
"pushed_at": "2022-12-14T11:37:39Z",
"stargazers_count": 31,
"watchers_count": 31,
"stargazers_count": 32,
"watchers_count": 32,
"has_discussions": false,
"forks_count": 6,
"allow_forking": true,
@ -30,7 +30,7 @@
],
"visibility": "public",
"forks": 6,
"watchers": 31,
"watchers": 32,
"score": 0
}
]

16
2022/CVE-2022-46169.json
View file

@ -13,10 +13,10 @@
"description": "CVE-2022-46169 Cacti remote_agent.php Unauthenticated Command Injection.",
"fork": false,
"created_at": "2022-12-08T01:52:13Z",
"updated_at": "2023-01-15T04:31:55Z",
"updated_at": "2023-01-15T12:31:56Z",
"pushed_at": "2022-12-08T02:50:46Z",
"stargazers_count": 42,
"watchers_count": 42,
"stargazers_count": 43,
"watchers_count": 43,
"has_discussions": false,
"forks_count": 11,
"allow_forking": true,
@ -25,7 +25,7 @@
"topics": [],
"visibility": "public",
"forks": 11,
"watchers": 42,
"watchers": 43,
"score": 0
},
{
@ -140,10 +140,10 @@
"description": "Exploit to CVE-2022-46169 vulnerability",
"fork": false,
"created_at": "2023-01-13T05:37:56Z",
"updated_at": "2023-01-15T09:05:25Z",
"updated_at": "2023-01-15T13:30:14Z",
"pushed_at": "2023-01-14T20:26:11Z",
"stargazers_count": 4,
"watchers_count": 4,
"stargazers_count": 5,
"watchers_count": 5,
"has_discussions": false,
"forks_count": 3,
"allow_forking": true,
@ -152,7 +152,7 @@
"topics": [],
"visibility": "public",
"forks": 3,
"watchers": 4,
"watchers": 5,
"score": 0
}
]

20
2022/CVE-2022-46689.json
View file

@ -42,10 +42,10 @@
"description": "CVE-2022-46689",
"fork": false,
"created_at": "2022-12-26T00:08:55Z",
"updated_at": "2023-01-13T23:29:08Z",
"pushed_at": "2023-01-13T18:26:06Z",
"stargazers_count": 70,
"watchers_count": 70,
"updated_at": "2023-01-15T13:09:40Z",
"pushed_at": "2023-01-15T15:30:36Z",
"stargazers_count": 71,
"watchers_count": 71,
"has_discussions": false,
"forks_count": 3,
"allow_forking": true,
@ -54,7 +54,7 @@
"topics": [],
"visibility": "public",
"forks": 3,
"watchers": 70,
"watchers": 71,
"score": 0
},
{
@ -221,10 +221,10 @@
"description": "CVE-2022-46689",
"fork": false,
"created_at": "2023-01-05T21:50:25Z",
"updated_at": "2023-01-14T12:12:36Z",
"pushed_at": "2023-01-13T23:28:25Z",
"stargazers_count": 85,
"watchers_count": 85,
"updated_at": "2023-01-15T17:51:43Z",
"pushed_at": "2023-01-15T14:52:17Z",
"stargazers_count": 88,
"watchers_count": 88,
"has_discussions": false,
"forks_count": 4,
"allow_forking": true,
@ -235,7 +235,7 @@
],
"visibility": "public",
"forks": 4,
"watchers": 85,
"watchers": 88,
"score": 0
},
{

12
2023/CVE-2023-21752.json
View file

@ -13,19 +13,19 @@
"description": null,
"fork": false,
"created_at": "2023-01-10T15:59:26Z",
"updated_at": "2023-01-15T12:15:57Z",
"updated_at": "2023-01-15T15:56:06Z",
"pushed_at": "2023-01-13T09:01:20Z",
"stargazers_count": 186,
"watchers_count": 186,
"stargazers_count": 189,
"watchers_count": 189,
"has_discussions": false,
"forks_count": 36,
"forks_count": 38,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 36,
"watchers": 186,
"forks": 38,
"watchers": 189,
"score": 0
}
]

50
README.md
View file

@ -5678,14 +5678,6 @@ In ResolverActivity, there is a possible user interaction bypass due to a tapjac
### CVE-2021-403
- [rhysmcneill/CVE-2021-403](https://github.com/rhysmcneill/CVE-2021-403)
### CVE-2021-1056 (2021-01-07)
<code>
NVIDIA GPU Display Driver for Linux, all versions, contains a vulnerability in the kernel mode layer (nvidia.ko) in which it does not completely honor operating system file system permissions to provide GPU device-level isolation, which may lead to denial of service or information disclosure.
</code>
- [pokerfaceSad/CVE-2021-1056](https://github.com/pokerfaceSad/CVE-2021-1056)
### CVE-2021-1480 (2021-04-08)
<code>
@ -5710,14 +5702,6 @@ A vulnerability in the Cisco Adaptive Security Device Manager (ASDM) Launcher co
- [jbaines-r7/staystaystay](https://github.com/jbaines-r7/staystaystay)
### CVE-2021-1647 (2021-01-12)
<code>
Microsoft Defender Remote Code Execution Vulnerability
</code>
- [findcool/cve-2021-1647](https://github.com/findcool/cve-2021-1647)
### CVE-2021-1656 (2021-01-12)
<code>
@ -5848,8 +5832,6 @@ Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Op
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Console). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in takeover of Oracle WebLogic Server. CVSS 3.1 Base Score 7.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H).
</code>
- [Al1ex/CVE-2021-2109](https://github.com/Al1ex/CVE-2021-2109)
- [rabbitsafe/CVE-2021-2109](https://github.com/rabbitsafe/CVE-2021-2109)
- [yuaneuro/CVE-2021-2109_poc](https://github.com/yuaneuro/CVE-2021-2109_poc)
- [dinosn/CVE-2021-2109](https://github.com/dinosn/CVE-2021-2109)
- [coco0x0a/CVE-2021-2109](https://github.com/coco0x0a/CVE-2021-2109)
@ -5861,7 +5843,6 @@ Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). The supported version that is affected is Prior to 6.1.18. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Oracle VM VirtualBox accessible data. CVSS 3.1 Base Score 6.0 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N).
</code>
- [Sauercloud/RWCTF21-VirtualBox-61-escape](https://github.com/Sauercloud/RWCTF21-VirtualBox-61-escape)
- [chatbottesisgmailh/Sauercloude](https://github.com/chatbottesisgmailh/Sauercloude)
- [shi10587s/Sauercloude](https://github.com/shi10587s/Sauercloude)
@ -5932,9 +5913,7 @@ Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connec
ffay lanproxy 0.1 allows Directory Traversal to read /../conf/config.properties to obtain credentials for a connection to the intranet.
</code>
- [B1anda0/CVE-2021-3019](https://github.com/B1anda0/CVE-2021-3019)
- [0xf4n9x/CVE-2021-3019](https://github.com/0xf4n9x/CVE-2021-3019)
- [Maksim-venus/CVE-2021-3019](https://github.com/Maksim-venus/CVE-2021-3019)
- [murataydemir/CVE-2021-3019](https://github.com/murataydemir/CVE-2021-3019)
- [Aoyuh/cve-2021-3019](https://github.com/Aoyuh/cve-2021-3019)
- [givemefivw/CVE-2021-3019](https://github.com/givemefivw/CVE-2021-3019)
@ -5963,9 +5942,6 @@ Ignition before 2.5.2, as used in Laravel and other products, allows unauthentic
</code>
- [ambionics/laravel-exploits](https://github.com/ambionics/laravel-exploits)
- [SNCKER/CVE-2021-3129](https://github.com/SNCKER/CVE-2021-3129)
- [SecPros-Team/laravel-CVE-2021-3129-EXP](https://github.com/SecPros-Team/laravel-CVE-2021-3129-EXP)
- [crisprss/Laravel_CVE-2021-3129_EXP](https://github.com/crisprss/Laravel_CVE-2021-3129_EXP)
- [nth347/CVE-2021-3129_exploit](https://github.com/nth347/CVE-2021-3129_exploit)
- [FunPhishing/Laravel-8.4.2-rce-CVE-2021-3129](https://github.com/FunPhishing/Laravel-8.4.2-rce-CVE-2021-3129)
- [zhzyker/CVE-2021-3129](https://github.com/zhzyker/CVE-2021-3129)
@ -5980,22 +5956,6 @@ Ignition before 2.5.2, as used in Laravel and other products, allows unauthentic
- [0nion1/CVE-2021-3129](https://github.com/0nion1/CVE-2021-3129)
- [MadExploits/Laravel-debug-Checker](https://github.com/MadExploits/Laravel-debug-Checker)
### CVE-2021-3130 (2021-01-20)
<code>
Within the Open-AudIT up to version 3.5.3 application, the web interface hides SSH secrets, Windows passwords, and SNMP strings from users using HTML 'password field' obfuscation. By using Developer tools or similar, it is possible to change the obfuscation so that the credentials are visible.
</code>
- [jet-pentest/CVE-2021-3130](https://github.com/jet-pentest/CVE-2021-3130)
### CVE-2021-3131 (2021-01-13)
<code>
The Web server in 1C:Enterprise 8 before 8.3.17.1851 sends base64 encoded credentials in the creds URL parameter.
</code>
- [jet-pentest/CVE-2021-3131](https://github.com/jet-pentest/CVE-2021-3131)
### CVE-2021-3138 (2021-01-13)
<code>
@ -6010,10 +5970,8 @@ In Discourse 2.7.0 through beta1, a rate-limit bypass leads to a bypass of the 2
Sudo before 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer overflow, which allows privilege escalation to root via &quot;sudoedit -s&quot; and a command-line argument that ends with a single backslash character.
</code>
- [mr-r3b00t/CVE-2021-3156](https://github.com/mr-r3b00t/CVE-2021-3156)
- [nexcess/sudo_cve-2021-3156](https://github.com/nexcess/sudo_cve-2021-3156)
- [reverse-ex/CVE-2021-3156](https://github.com/reverse-ex/CVE-2021-3156)
- [unauth401/CVE-2021-3156](https://github.com/unauth401/CVE-2021-3156)
- [ymrsmns/CVE-2021-3156](https://github.com/ymrsmns/CVE-2021-3156)
- [elbee-cyber/CVE-2021-3156-PATCHER](https://github.com/elbee-cyber/CVE-2021-3156-PATCHER)
- [kernelzeroday/CVE-2021-3156-Baron-Samedit](https://github.com/kernelzeroday/CVE-2021-3156-Baron-Samedit)
@ -6079,14 +6037,6 @@ Sudo before 1.9.5p2 contains an off-by-one error that can result in a heap-based
### CVE-2021-3157
- [CrackerCat/cve-2021-3157](https://github.com/CrackerCat/cve-2021-3157)
### CVE-2021-3164 (2021-01-21)
<code>
ChurchRota 2.6.4 is vulnerable to authenticated remote code execution. The user does not need to have file upload permission in order to upload and execute an arbitrary file via a POST request to resources.php.
</code>
- [rmccarth/cve-2021-3164](https://github.com/rmccarth/cve-2021-3164)
### CVE-2021-3165 (2021-01-26)
<code>