mirror/PoC-in-GitHub
1
0
Fork 0
mirror of https://github.com/nomi-sec/PoC-in-GitHub.git synced 2025-01-29 02:54:10 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

Auto Update 2024/07/14 18:29:16

Browse source
This commit is contained in:
motikan2010-bot 2024-07-15 03:29:16 +09:00
parent 12f305135f
commit 6725d38e7f
25 changed files with 122 additions and 130 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
2014/CVE-2014-0160.json
View file

@ -1192,10 +1192,10 @@
"description": "Vulnerability as a service: showcasing CVS-2014-0160, a.k.a. Heartbleed",
"fork": false,
"created_at": "2015-07-12T22:40:54Z",
"updated_at": "2024-01-03T14:12:29Z",
"updated_at": "2024-07-14T13:03:17Z",
"pushed_at": "2019-10-08T10:03:04Z",
"stargazers_count": 14,
"watchers_count": 14,
"stargazers_count": 15,
"watchers_count": 15,
"has_discussions": false,
"forks_count": 9,
"allow_forking": true,
@ -1204,7 +1204,7 @@
"topics": [],
"visibility": "public",
"forks": 9,
"watchers": 14,
"watchers": 15,
"score": 0,
"subscribers_count": 2
},

2
2014/CVE-2014-6271.json
View file

@ -2372,6 +2372,6 @@
"forks": 0,
"watchers": 1,
"score": 0,
"subscribers_count": 0
"subscribers_count": 1
}
]

8
2017/CVE-2017-5753.json
View file

@ -13,10 +13,10 @@
"description": "Example of using revealed \"Spectre\" exploit (CVE-2017-5753 and CVE-2017-5715)",
"fork": false,
"created_at": "2018-01-04T00:28:50Z",
"updated_at": "2024-07-08T11:29:32Z",
"updated_at": "2024-07-14T14:50:37Z",
"pushed_at": "2018-01-10T01:14:44Z",
"stargazers_count": 751,
"watchers_count": 751,
"stargazers_count": 752,
"watchers_count": 752,
"has_discussions": false,
"forks_count": 170,
"allow_forking": true,
@ -31,7 +31,7 @@
],
"visibility": "public",
"forks": 170,
"watchers": 751,
"watchers": 752,
"score": 0,
"subscribers_count": 41
},

4
2018/CVE-2018-19320.json
View file

@ -78,13 +78,13 @@
"stargazers_count": 169,
"watchers_count": 169,
"has_discussions": false,
"forks_count": 44,
"forks_count": 45,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 44,
"forks": 45,
"watchers": 169,
"score": 0,
"subscribers_count": 6

8
2019/CVE-2019-0708.json
View file

@ -3077,10 +3077,10 @@
"description": "CVE-2019-0708 (BlueKeep) proof of concept allowing pre-auth RCE on Windows7",
"fork": false,
"created_at": "2020-03-15T19:33:53Z",
"updated_at": "2024-07-01T12:54:22Z",
"updated_at": "2024-07-14T13:12:39Z",
"pushed_at": "2022-03-28T04:10:20Z",
"stargazers_count": 125,
"watchers_count": 125,
"stargazers_count": 126,
"watchers_count": 126,
"has_discussions": false,
"forks_count": 19,
"allow_forking": true,
@ -3089,7 +3089,7 @@
"topics": [],
"visibility": "public",
"forks": 19,
"watchers": 125,
"watchers": 126,
"score": 0,
"subscribers_count": 4
},

8
2019/CVE-2019-11358.json
View file

File diff suppressed because one or more lines are too long

8
2020/CVE-2020-1472.json
View file

@ -170,10 +170,10 @@
"description": "Exploit for zerologon cve-2020-1472",
"fork": false,
"created_at": "2020-09-14T19:19:07Z",
"updated_at": "2024-07-11T20:35:55Z",
"updated_at": "2024-07-14T12:48:36Z",
"pushed_at": "2020-10-15T18:31:15Z",
"stargazers_count": 612,
"watchers_count": 612,
"stargazers_count": 613,
"watchers_count": 613,
"has_discussions": false,
"forks_count": 146,
"allow_forking": true,
@ -182,7 +182,7 @@
"topics": [],
"visibility": "public",
"forks": 146,
"watchers": 612,
"watchers": 613,
"score": 0,
"subscribers_count": 13
},

8
2020/CVE-2020-1938.json
View file

@ -373,10 +373,10 @@
"description": "Ghostcat read file\/code execute,CNVD-2020-10487(CVE-2020-1938) ",
"fork": false,
"created_at": "2020-02-22T16:16:20Z",
"updated_at": "2024-07-09T01:15:25Z",
"updated_at": "2024-07-14T17:34:06Z",
"pushed_at": "2020-03-09T14:51:43Z",
"stargazers_count": 352,
"watchers_count": 352,
"stargazers_count": 353,
"watchers_count": 353,
"has_discussions": false,
"forks_count": 111,
"allow_forking": true,
@ -391,7 +391,7 @@
],
"visibility": "public",
"forks": 111,
"watchers": 352,
"watchers": 353,
"score": 0,
"subscribers_count": 5
},

8
2021/CVE-2021-42278.json
View file

@ -48,10 +48,10 @@
"description": "Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user ",
"fork": false,
"created_at": "2021-12-13T10:28:12Z",
"updated_at": "2024-07-04T11:20:25Z",
"updated_at": "2024-07-14T12:52:09Z",
"pushed_at": "2023-01-29T03:31:27Z",
"stargazers_count": 749,
"watchers_count": 749,
"stargazers_count": 750,
"watchers_count": 750,
"has_discussions": false,
"forks_count": 118,
"allow_forking": true,
@ -60,7 +60,7 @@
"topics": [],
"visibility": "public",
"forks": 118,
"watchers": 749,
"watchers": 750,
"score": 0,
"subscribers_count": 13
},

8
2022/CVE-2022-29464.json
View file

@ -417,10 +417,10 @@
"description": "A bots loader for CVE-2022-29464 with multithreading",
"fork": false,
"created_at": "2022-05-15T08:51:16Z",
"updated_at": "2024-05-23T20:23:27Z",
"updated_at": "2024-07-14T17:32:00Z",
"pushed_at": "2022-08-08T15:31:54Z",
"stargazers_count": 11,
"watchers_count": 11,
"stargazers_count": 12,
"watchers_count": 12,
"has_discussions": false,
"forks_count": 4,
"allow_forking": true,
@ -437,7 +437,7 @@
],
"visibility": "public",
"forks": 4,
"watchers": 11,
"watchers": 12,
"score": 0,
"subscribers_count": 1
},

8
2023/CVE-2023-32784.json
View file

@ -13,10 +13,10 @@
"description": "Original PoC for CVE-2023-32784",
"fork": false,
"created_at": "2023-05-01T17:08:55Z",
"updated_at": "2024-07-10T21:11:51Z",
"updated_at": "2024-07-14T15:15:25Z",
"pushed_at": "2023-08-17T19:26:55Z",
"stargazers_count": 622,
"watchers_count": 622,
"stargazers_count": 621,
"watchers_count": 621,
"has_discussions": false,
"forks_count": 57,
"allow_forking": true,
@ -28,7 +28,7 @@
],
"visibility": "public",
"forks": 57,
"watchers": 622,
"watchers": 621,
"score": 0,
"subscribers_count": 11
},

16
2023/CVE-2023-45866.json
View file

@ -13,10 +13,10 @@
"description": "🚨 CVE-2023-45866 - BlueDucky Implementation (Using DuckyScript) 🔓 Unauthenticated Peering Leading to Code Execution (Using HID Keyboard)",
"fork": false,
"created_at": "2024-01-16T06:52:02Z",
"updated_at": "2024-07-14T12:24:57Z",
"updated_at": "2024-07-14T15:38:50Z",
"pushed_at": "2024-07-05T12:35:27Z",
"stargazers_count": 988,
"watchers_count": 988,
"stargazers_count": 990,
"watchers_count": 990,
"has_discussions": false,
"forks_count": 165,
"allow_forking": true,
@ -25,7 +25,7 @@
"topics": [],
"visibility": "public",
"forks": 165,
"watchers": 988,
"watchers": 990,
"score": 0,
"subscribers_count": 16
},
@ -48,13 +48,13 @@
"stargazers_count": 7,
"watchers_count": 7,
"has_discussions": false,
"forks_count": 3,
"forks_count": 4,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 3,
"forks": 4,
"watchers": 7,
"score": 0,
"subscribers_count": 0
@ -108,13 +108,13 @@
"stargazers_count": 0,
"watchers_count": 0,
"has_discussions": false,
"forks_count": 1,
"forks_count": 2,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 1,
"forks": 2,
"watchers": 0,
"score": 0,
"subscribers_count": 0

32
2023/CVE-2023-48194.json
View file

@ -1,32 +0,0 @@
[
{
"id": 824970501,
"name": "CVE-2023-48194",
"full_name": "zt20xx\/CVE-2023-48194",
"owner": {
"login": "zt20xx",
"id": 113044696,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/113044696?v=4",
"html_url": "https:\/\/github.com\/zt20xx"
},
"html_url": "https:\/\/github.com\/zt20xx\/CVE-2023-48194",
"description": null,
"fork": false,
"created_at": "2024-07-06T12:37:56Z",
"updated_at": "2024-07-06T14:05:10Z",
"pushed_at": "2024-07-06T13:56:26Z",
"stargazers_count": 0,
"watchers_count": 0,
"has_discussions": false,
"forks_count": 0,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 0,
"watchers": 0,
"score": 0,
"subscribers_count": 1
}
]

8
2023/CVE-2023-4966.json
View file

@ -13,10 +13,10 @@
"description": "Sensitive information disclosure in NetScaler ADC and NetScaler Gateway when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server. ",
"fork": false,
"created_at": "2023-10-24T17:19:32Z",
"updated_at": "2024-07-11T02:55:36Z",
"updated_at": "2024-07-14T13:19:05Z",
"pushed_at": "2023-10-26T14:16:05Z",
"stargazers_count": 67,
"watchers_count": 67,
"stargazers_count": 68,
"watchers_count": 68,
"has_discussions": false,
"forks_count": 11,
"allow_forking": true,
@ -41,7 +41,7 @@
],
"visibility": "public",
"forks": 11,
"watchers": 67,
"watchers": 68,
"score": 0,
"subscribers_count": 2
},

12
2023/CVE-2023-6241.json
View file

@ -13,12 +13,12 @@
"description": "CVE-2023-6241 for Pixel 8",
"fork": false,
"created_at": "2024-05-02T02:17:31Z",
"updated_at": "2024-07-08T06:23:26Z",
"updated_at": "2024-07-14T13:17:40Z",
"pushed_at": "2024-06-21T08:24:09Z",
"stargazers_count": 4,
"watchers_count": 4,
"stargazers_count": 5,
"watchers_count": 5,
"has_discussions": false,
"forks_count": 1,
"forks_count": 2,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
@ -33,8 +33,8 @@
"poe"
],
"visibility": "public",
"forks": 1,
"watchers": 4,
"forks": 2,
"watchers": 5,
"score": 0,
"subscribers_count": 1
}

12
2024/CVE-2024-1086.json
View file

@ -13,12 +13,12 @@
"description": "Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4% in KernelCTF images.",
"fork": false,
"created_at": "2024-03-20T21:16:41Z",
"updated_at": "2024-07-12T15:05:22Z",
"updated_at": "2024-07-14T18:30:26Z",
"pushed_at": "2024-04-17T16:09:54Z",
"stargazers_count": 2179,
"watchers_count": 2179,
"stargazers_count": 2180,
"watchers_count": 2180,
"has_discussions": false,
"forks_count": 284,
"forks_count": 285,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
@ -30,8 +30,8 @@
"poc"
],
"visibility": "public",
"forks": 284,
"watchers": 2179,
"forks": 285,
"watchers": 2180,
"score": 0,
"subscribers_count": 23
},

8
2024/CVE-2024-21338.json
View file

@ -13,10 +13,10 @@
"description": "Local Privilege Escalation from Admin to Kernel vulnerability on Windows 10 and Windows 11 operating systems with HVCI enabled.",
"fork": false,
"created_at": "2024-04-13T05:53:02Z",
"updated_at": "2024-07-08T20:23:50Z",
"updated_at": "2024-07-14T15:52:20Z",
"pushed_at": "2024-04-16T21:00:14Z",
"stargazers_count": 244,
"watchers_count": 244,
"stargazers_count": 245,
"watchers_count": 245,
"has_discussions": false,
"forks_count": 56,
"allow_forking": true,
@ -25,7 +25,7 @@
"topics": [],
"visibility": "public",
"forks": 56,
"watchers": 244,
"watchers": 245,
"score": 0,
"subscribers_count": 3
},

6
2024/CVE-2024-25600.json
View file

@ -133,12 +133,12 @@
"description": "A PoC exploit for CVE-2024-25600 - WordPress Bricks Builder Remote Code Execution (RCE)",
"fork": false,
"created_at": "2024-03-01T09:28:08Z",
"updated_at": "2024-07-11T02:49:42Z",
"updated_at": "2024-07-14T15:15:26Z",
"pushed_at": "2024-03-01T09:46:56Z",
"stargazers_count": 13,
"watchers_count": 13,
"has_discussions": false,
"forks_count": 3,
"forks_count": 4,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
@ -162,7 +162,7 @@
"wordpress-plugin"
],
"visibility": "public",
"forks": 3,
"forks": 4,
"watchers": 13,
"score": 0,
"subscribers_count": 1

8
2024/CVE-2024-28995.json
View file

@ -13,10 +13,10 @@
"description": "SolarWinds Serv-U Directory Traversal Vulnerability (CVE-2024-28995) POC",
"fork": false,
"created_at": "2024-06-13T12:02:33Z",
"updated_at": "2024-07-14T07:26:09Z",
"updated_at": "2024-07-14T15:47:24Z",
"pushed_at": "2024-07-14T07:26:06Z",
"stargazers_count": 2,
"watchers_count": 2,
"stargazers_count": 3,
"watchers_count": 3,
"has_discussions": false,
"forks_count": 1,
"allow_forking": true,
@ -25,7 +25,7 @@
"topics": [],
"visibility": "public",
"forks": 1,
"watchers": 2,
"watchers": 3,
"score": 0,
"subscribers_count": 1
},

8
2024/CVE-2024-29824.json
View file

@ -13,10 +13,10 @@
"description": "Ivanti EPM SQL Injection Remote Code Execution Vulnerability",
"fork": false,
"created_at": "2024-06-12T13:53:32Z",
"updated_at": "2024-07-01T14:25:16Z",
"updated_at": "2024-07-14T18:15:56Z",
"pushed_at": "2024-06-12T14:04:39Z",
"stargazers_count": 12,
"watchers_count": 12,
"stargazers_count": 13,
"watchers_count": 13,
"has_discussions": false,
"forks_count": 5,
"allow_forking": true,
@ -25,7 +25,7 @@
"topics": [],
"visibility": "public",
"forks": 5,
"watchers": 12,
"watchers": 13,
"score": 0,
"subscribers_count": 5
},

8
2024/CVE-2024-3094.json
View file

@ -982,10 +982,10 @@
"description": "notes, honeypot, and exploit demo for the xz backdoor (CVE-2024-3094)",
"fork": false,
"created_at": "2024-04-01T14:28:09Z",
"updated_at": "2024-07-12T15:05:33Z",
"updated_at": "2024-07-14T16:37:18Z",
"pushed_at": "2024-04-03T04:58:50Z",
"stargazers_count": 3473,
"watchers_count": 3473,
"stargazers_count": 3474,
"watchers_count": 3474,
"has_discussions": false,
"forks_count": 235,
"allow_forking": true,
@ -994,7 +994,7 @@
"topics": [],
"visibility": "public",
"forks": 235,
"watchers": 3473,
"watchers": 3474,
"score": 0,
"subscribers_count": 39
},

8
2024/CVE-2024-36991.json
View file

@ -13,10 +13,10 @@
"description": "POC for CVE-2024-36991: This exploit will attempt to read Splunk \/etc\/passwd file.",
"fork": false,
"created_at": "2024-07-06T00:49:40Z",
"updated_at": "2024-07-13T01:56:02Z",
"updated_at": "2024-07-14T14:39:20Z",
"pushed_at": "2024-07-12T00:41:36Z",
"stargazers_count": 86,
"watchers_count": 86,
"stargazers_count": 87,
"watchers_count": 87,
"has_discussions": false,
"forks_count": 16,
"allow_forking": true,
@ -25,7 +25,7 @@
"topics": [],
"visibility": "public",
"forks": 16,
"watchers": 86,
"watchers": 87,
"score": 0,
"subscribers_count": 1
},

8
2024/CVE-2024-4040.json
View file

@ -13,10 +13,10 @@
"description": "Scanner for CVE-2024-4040",
"fork": false,
"created_at": "2024-04-23T09:31:29Z",
"updated_at": "2024-07-10T20:23:05Z",
"updated_at": "2024-07-14T12:50:25Z",
"pushed_at": "2024-05-17T06:48:43Z",
"stargazers_count": 50,
"watchers_count": 50,
"stargazers_count": 51,
"watchers_count": 51,
"has_discussions": false,
"forks_count": 8,
"allow_forking": true,
@ -25,7 +25,7 @@
"topics": [],
"visibility": "public",
"forks": 8,
"watchers": 50,
"watchers": 51,
"score": 0,
"subscribers_count": 8
},

30
2024/CVE-2024-6387.json
View file

@ -2608,5 +2608,35 @@
"watchers": 0,
"score": 0,
"subscribers_count": 1
},
{
"id": 828627988,
"name": "CVE-2024-6387",
"full_name": "Jhonsonwannaa\/CVE-2024-6387",
"owner": {
"login": "Jhonsonwannaa",
"id": 114837630,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/114837630?v=4",
"html_url": "https:\/\/github.com\/Jhonsonwannaa"
},
"html_url": "https:\/\/github.com\/Jhonsonwannaa\/CVE-2024-6387",
"description": " OpenSSH a publié un avis de sécurité concernant la vulnérabilité critique CVE-2024-6387. Cette vulnérabilité permet à un attaquant non authentifié d'exécuter du code arbitraire",
"fork": false,
"created_at": "2024-07-14T18:00:49Z",
"updated_at": "2024-07-14T18:05:22Z",
"pushed_at": "2024-07-14T18:02:26Z",
"stargazers_count": 0,
"watchers_count": 0,
"has_discussions": false,
"forks_count": 0,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 0,
"watchers": 0,
"score": 0,
"subscribers_count": 0
}
]

10
README.md
View file

@ -926,7 +926,7 @@
### CVE-2024-6387 (2024-07-01)
<code>A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead to sshd to handle some signals in an unsafe manner. An unauthenticated, remote attacker may be able to trigger it by failing to authenticate within a set time period.
<code>A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead sshd to handle some signals in an unsafe manner. An unauthenticated, remote attacker may be able to trigger it by failing to authenticate within a set time period.
</code>
- [zgzhang/cve-2024-6387-poc](https://github.com/zgzhang/cve-2024-6387-poc)
@ -1012,6 +1012,7 @@
- [Sibijo/mitigate_ssh](https://github.com/Sibijo/mitigate_ssh)
- [Passyed/regreSSHion-Fix](https://github.com/Passyed/regreSSHion-Fix)
- [k4t3pr0/CVE-2024-6387-Check](https://github.com/k4t3pr0/CVE-2024-6387-Check)
- [Jhonsonwannaa/CVE-2024-6387](https://github.com/Jhonsonwannaa/CVE-2024-6387)
### CVE-2024-11451
- [Xiaolqy/CVE-2024-11451](https://github.com/Xiaolqy/CVE-2024-11451)
@ -10772,13 +10773,6 @@
- [NHPT/CVE-2023-48123](https://github.com/NHPT/CVE-2023-48123)
### CVE-2023-48194 (2024-07-09)
<code>Vulnerability in Tenda AC8v4 .V16.03.34.09 due to sscanf and the last digit of s8 being overwritten with \x0. After executing set_client_qos, control over the gp register can be obtained.
</code>
- [zt20xx/CVE-2023-48194](https://github.com/zt20xx/CVE-2023-48194)
### CVE-2023-48197 (2023-11-15)
<code>Cross-Site Scripting (XSS) vulnerability in the manageApiKeys component of Grocy 4.0.3 and earlier allows attackers to obtain victim's cookies when the victim clicks on the &quot;see QR code&quot; function.