mirror/PoC-in-GitHub
1
0
Fork 0
mirror of https://github.com/nomi-sec/PoC-in-GitHub.git synced 2025-01-15 20:32:21 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

Auto Update 2021/08/29 06:13:38

Browse source
This commit is contained in:
motikan2010-bot 2021-08-29 06:13:38 +09:00
parent 1f5ca82a11
commit 915e0a9cd3
51 changed files with 60 additions and 2233 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
2014/CVE-2014-0160.json
View file

@ -799,8 +799,8 @@
"pushed_at": "2021-02-20T19:41:03Z",
"stargazers_count": 60,
"watchers_count": 60,
"forks_count": 37,
"forks": 37,
"forks_count": 38,
"forks": 38,
"watchers": 60,
"score": 0
},

4
2015/CVE-2015-5477.json
View file

@ -17,8 +17,8 @@
"pushed_at": "2015-08-01T21:32:51Z",
"stargazers_count": 64,
"watchers_count": 64,
"forks_count": 49,
"forks": 49,
"forks_count": 50,
"forks": 50,
"watchers": 64,
"score": 0
},

4
2017/CVE-2017-8570.json
View file

@ -40,8 +40,8 @@
"pushed_at": "2018-01-09T19:23:43Z",
"stargazers_count": 177,
"watchers_count": 177,
"forks_count": 103,
"forks": 103,
"forks_count": 102,
"forks": 102,
"watchers": 177,
"score": 0
},

4
2018/CVE-2018-20250.json
View file

@ -17,8 +17,8 @@
"pushed_at": "2019-08-05T10:45:34Z",
"stargazers_count": 456,
"watchers_count": 456,
"forks_count": 184,
"forks": 184,
"forks_count": 183,
"forks": 183,
"watchers": 456,
"score": 0
},

8
2018/CVE-2018-6242.json
View file

@ -105,13 +105,13 @@
"description": "Nintendo CVE 2018-6242",
"fork": false,
"created_at": "2021-04-02T05:00:05Z",
"updated_at": "2021-08-23T13:10:52Z",
"updated_at": "2021-08-28T17:33:15Z",
"pushed_at": "2021-08-23T13:10:27Z",
"stargazers_count": 6,
"watchers_count": 6,
"stargazers_count": 7,
"watchers_count": 7,
"forks_count": 0,
"forks": 0,
"watchers": 6,
"watchers": 7,
"score": 0
}
]

12
2019/CVE-2019-0708.json
View file

@ -914,8 +914,8 @@
"pushed_at": "2019-06-01T05:15:11Z",
"stargazers_count": 476,
"watchers_count": 476,
"forks_count": 192,
"forks": 192,
"forks_count": 191,
"forks": 191,
"watchers": 476,
"score": 0
},
@ -2589,13 +2589,13 @@
"description": "MS CVE 2019-0708 Python Exploit",
"fork": false,
"created_at": "2021-03-07T12:35:29Z",
"updated_at": "2021-08-23T03:01:59Z",
"updated_at": "2021-08-28T17:34:12Z",
"pushed_at": "2021-08-23T03:01:48Z",
"stargazers_count": 6,
"watchers_count": 6,
"stargazers_count": 7,
"watchers_count": 7,
"forks_count": 0,
"forks": 0,
"watchers": 6,
"watchers": 7,
"score": 0
},
{

8
2019/CVE-2019-17558.json
View file

@ -36,13 +36,13 @@
"description": "Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340",
"fork": false,
"created_at": "2020-04-01T09:33:35Z",
"updated_at": "2021-08-28T05:54:29Z",
"updated_at": "2021-08-28T19:43:32Z",
"pushed_at": "2021-04-04T09:13:57Z",
"stargazers_count": 2815,
"watchers_count": 2815,
"stargazers_count": 2816,
"watchers_count": 2816,
"forks_count": 815,
"forks": 815,
"watchers": 2815,
"watchers": 2816,
"score": 0
},
{

8
2019/CVE-2019-6340.json
View file

@ -197,13 +197,13 @@
"description": "Drupal RCE CVE Python Exploit",
"fork": false,
"created_at": "2021-03-07T18:44:49Z",
"updated_at": "2021-08-23T02:58:11Z",
"updated_at": "2021-08-28T17:34:17Z",
"pushed_at": "2021-08-23T02:58:05Z",
"stargazers_count": 6,
"watchers_count": 6,
"stargazers_count": 7,
"watchers_count": 7,
"forks_count": 0,
"forks": 0,
"watchers": 6,
"watchers": 7,
"score": 0
},
{

23
2020/CVE-2020-0069.json
View file

@ -22,29 +22,6 @@
"watchers": 66,
"score": 0
},
{
"id": 244758802,
"name": "mtk-su-reverse-cve-2020-0069",
"full_name": "TheRealJunior\/mtk-su-reverse-cve-2020-0069",
"owner": {
"login": "TheRealJunior",
"id": 8438895,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/8438895?v=4",
"html_url": "https:\/\/github.com\/TheRealJunior"
},
"html_url": "https:\/\/github.com\/TheRealJunior\/mtk-su-reverse-cve-2020-0069",
"description": "reversing mtk-su",
"fork": false,
"created_at": "2020-03-03T22:55:42Z",
"updated_at": "2021-04-22T09:59:59Z",
"pushed_at": "2020-03-04T22:32:03Z",
"stargazers_count": 15,
"watchers_count": 15,
"forks_count": 6,
"forks": 6,
"watchers": 15,
"score": 0
},
{
"id": 245598253,
"name": "CVE-2020-0069",

552
2020/CVE-2020-0601.json
View file

@ -1,27 +1,4 @@
[
{
"id": 233959211,
"name": "CVE-2020-0601",
"full_name": "nissan-sudo\/CVE-2020-0601",
"owner": {
"login": "nissan-sudo",
"id": 58976920,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/58976920?v=4",
"html_url": "https:\/\/github.com\/nissan-sudo"
},
"html_url": "https:\/\/github.com\/nissan-sudo\/CVE-2020-0601",
"description": "Remote Code Execution Exploit ",
"fork": false,
"created_at": "2020-01-14T23:53:18Z",
"updated_at": "2020-01-27T17:28:37Z",
"pushed_at": "2020-01-14T23:56:22Z",
"stargazers_count": 2,
"watchers_count": 2,
"forks_count": 1,
"forks": 1,
"watchers": 2,
"score": 0
},
{
"id": 233960159,
"name": "cve-2020-0601",
@ -45,75 +22,6 @@
"watchers": 35,
"score": 0
},
{
"id": 234134766,
"name": "CVE-2020-0601",
"full_name": "SherlockSec\/CVE-2020-0601",
"owner": {
"login": "SherlockSec",
"id": 37545173,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/37545173?v=4",
"html_url": "https:\/\/github.com\/SherlockSec"
},
"html_url": "https:\/\/github.com\/SherlockSec\/CVE-2020-0601",
"description": "A Windows Crypto Exploit",
"fork": false,
"created_at": "2020-01-15T17:26:58Z",
"updated_at": "2020-01-16T20:56:07Z",
"pushed_at": "2020-01-15T17:28:20Z",
"stargazers_count": 1,
"watchers_count": 1,
"forks_count": 1,
"forks": 1,
"watchers": 1,
"score": 0
},
{
"id": 234146234,
"name": "CVE-2020-0601",
"full_name": "JPurrier\/CVE-2020-0601",
"owner": {
"login": "JPurrier",
"id": 25715340,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/25715340?v=4",
"html_url": "https:\/\/github.com\/JPurrier"
},
"html_url": "https:\/\/github.com\/JPurrier\/CVE-2020-0601",
"description": null,
"fork": false,
"created_at": "2020-01-15T18:31:30Z",
"updated_at": "2020-01-17T10:49:19Z",
"pushed_at": "2020-01-17T10:49:17Z",
"stargazers_count": 0,
"watchers_count": 0,
"forks_count": 0,
"forks": 0,
"watchers": 0,
"score": 0
},
{
"id": 234190972,
"name": "cve-2020-0601-plugin",
"full_name": "0xxon\/cve-2020-0601-plugin",
"owner": {
"login": "0xxon",
"id": 1538460,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/1538460?v=4",
"html_url": "https:\/\/github.com\/0xxon"
},
"html_url": "https:\/\/github.com\/0xxon\/cve-2020-0601-plugin",
"description": "Zeek package that uses OpenSSL to detect CVE-2020-0601 exploit attempts",
"fork": false,
"created_at": "2020-01-15T23:07:02Z",
"updated_at": "2020-02-12T19:38:37Z",
"pushed_at": "2020-02-12T19:38:35Z",
"stargazers_count": 5,
"watchers_count": 5,
"forks_count": 2,
"forks": 2,
"watchers": 5,
"score": 0
},
{
"id": 234192123,
"name": "chainoffools",
@ -137,121 +45,6 @@
"watchers": 340,
"score": 0
},
{
"id": 234220195,
"name": "Awesome-CVE-2020-0601",
"full_name": "RrUZi\/Awesome-CVE-2020-0601",
"owner": {
"login": "RrUZi",
"id": 43235635,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/43235635?v=4",
"html_url": "https:\/\/github.com\/RrUZi"
},
"html_url": "https:\/\/github.com\/RrUZi\/Awesome-CVE-2020-0601",
"description": "😂An awesome curated list of repos for CVE-2020-0601.",
"fork": false,
"created_at": "2020-01-16T02:46:21Z",
"updated_at": "2021-08-12T05:48:52Z",
"pushed_at": "2020-02-02T02:29:23Z",
"stargazers_count": 3,
"watchers_count": 3,
"forks_count": 1,
"forks": 1,
"watchers": 3,
"score": 0
},
{
"id": 234317211,
"name": "CVE-2020-0601",
"full_name": "BleepSec\/CVE-2020-0601",
"owner": {
"login": "BleepSec",
"id": 550582,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/550582?v=4",
"html_url": "https:\/\/github.com\/BleepSec"
},
"html_url": "https:\/\/github.com\/BleepSec\/CVE-2020-0601",
"description": "Curated list of CVE-2020-0601 resources",
"fork": false,
"created_at": "2020-01-16T12:40:48Z",
"updated_at": "2020-09-05T23:01:53Z",
"pushed_at": "2020-02-03T21:24:45Z",
"stargazers_count": 2,
"watchers_count": 2,
"forks_count": 2,
"forks": 2,
"watchers": 2,
"score": 0
},
{
"id": 234378948,
"name": "CVE-2020-0601",
"full_name": "apmunch\/CVE-2020-0601",
"owner": {
"login": "apmunch",
"id": 7328483,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/7328483?v=4",
"html_url": "https:\/\/github.com\/apmunch"
},
"html_url": "https:\/\/github.com\/apmunch\/CVE-2020-0601",
"description": null,
"fork": false,
"created_at": "2020-01-16T17:54:36Z",
"updated_at": "2020-01-16T18:04:01Z",
"pushed_at": "2020-01-16T18:03:59Z",
"stargazers_count": 0,
"watchers_count": 0,
"forks_count": 0,
"forks": 0,
"watchers": 0,
"score": 0
},
{
"id": 234433419,
"name": "badecparams",
"full_name": "saleemrashid\/badecparams",
"owner": {
"login": "saleemrashid",
"id": 22301423,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/22301423?v=4",
"html_url": "https:\/\/github.com\/saleemrashid"
},
"html_url": "https:\/\/github.com\/saleemrashid\/badecparams",
"description": "Proof of Concept for CVE-2020-0601",
"fork": false,
"created_at": "2020-01-16T23:44:37Z",
"updated_at": "2021-08-27T16:01:43Z",
"pushed_at": "2020-02-24T18:41:10Z",
"stargazers_count": 61,
"watchers_count": 61,
"forks_count": 15,
"forks": 15,
"watchers": 61,
"score": 0
},
{
"id": 234442281,
"name": "cve-2020-0601-utils",
"full_name": "0xxon\/cve-2020-0601-utils",
"owner": {
"login": "0xxon",
"id": 1538460,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/1538460?v=4",
"html_url": "https:\/\/github.com\/0xxon"
},
"html_url": "https:\/\/github.com\/0xxon\/cve-2020-0601-utils",
"description": "C++ based utility to check if certificates are trying to exploit CVE-2020-0601",
"fork": false,
"created_at": "2020-01-17T01:02:52Z",
"updated_at": "2020-01-21T19:49:00Z",
"pushed_at": "2020-01-21T19:48:58Z",
"stargazers_count": 0,
"watchers_count": 0,
"forks_count": 2,
"forks": 2,
"watchers": 0,
"score": 0
},
{
"id": 234574037,
"name": "Windows10_Cumulative_Updates_PowerShell",
@ -275,259 +68,6 @@
"watchers": 1,
"score": 0
},
{
"id": 234588471,
"name": "CVE-2020-0601",
"full_name": "MarkusZehnle\/CVE-2020-0601",
"owner": {
"login": "MarkusZehnle",
"id": 60010315,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/60010315?v=4",
"html_url": "https:\/\/github.com\/MarkusZehnle"
},
"html_url": "https:\/\/github.com\/MarkusZehnle\/CVE-2020-0601",
"description": null,
"fork": false,
"created_at": "2020-01-17T16:24:31Z",
"updated_at": "2020-01-17T16:42:32Z",
"pushed_at": "2020-01-17T16:42:30Z",
"stargazers_count": 0,
"watchers_count": 0,
"forks_count": 1,
"forks": 1,
"watchers": 0,
"score": 0
},
{
"id": 234598729,
"name": "CVE-2020-0601",
"full_name": "YoannDqr\/CVE-2020-0601",
"owner": {
"login": "YoannDqr",
"id": 26006989,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/26006989?v=4",
"html_url": "https:\/\/github.com\/YoannDqr"
},
"html_url": "https:\/\/github.com\/YoannDqr\/CVE-2020-0601",
"description": "CurveBall CVE exploitation",
"fork": false,
"created_at": "2020-01-17T17:17:55Z",
"updated_at": "2020-02-09T12:37:38Z",
"pushed_at": "2020-01-20T10:52:57Z",
"stargazers_count": 2,
"watchers_count": 2,
"forks_count": 0,
"forks": 0,
"watchers": 2,
"score": 0
},
{
"id": 234714299,
"name": "cve-2020-0601-Perl",
"full_name": "thimelp\/cve-2020-0601-Perl",
"owner": {
"login": "thimelp",
"id": 60032194,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/60032194?v=4",
"html_url": "https:\/\/github.com\/thimelp"
},
"html_url": "https:\/\/github.com\/thimelp\/cve-2020-0601-Perl",
"description": "Perl version of recently published scripts to build ECC certificates with specific parameters re CVE-2020-0601",
"fork": false,
"created_at": "2020-01-18T09:58:16Z",
"updated_at": "2020-02-07T23:24:44Z",
"pushed_at": "2020-01-18T12:07:06Z",
"stargazers_count": 0,
"watchers_count": 0,
"forks_count": 0,
"forks": 0,
"watchers": 0,
"score": 0
},
{
"id": 234920281,
"name": "curveball_lua",
"full_name": "dlee35\/curveball_lua",
"owner": {
"login": "dlee35",
"id": 7849311,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/7849311?v=4",
"html_url": "https:\/\/github.com\/dlee35"
},
"html_url": "https:\/\/github.com\/dlee35\/curveball_lua",
"description": "Repo containing lua scripts and PCAP to find CVE-2020-0601 exploit attempts via network traffic",
"fork": false,
"created_at": "2020-01-19T15:20:19Z",
"updated_at": "2020-01-19T21:25:55Z",
"pushed_at": "2020-01-19T21:25:53Z",
"stargazers_count": 0,
"watchers_count": 0,
"forks_count": 0,
"forks": 0,
"watchers": 0,
"score": 0
},
{
"id": 234944443,
"name": "-CVE-2020-0601-ECC---EXPLOIT",
"full_name": "IIICTECH\/-CVE-2020-0601-ECC---EXPLOIT",
"owner": {
"login": "IIICTECH",
"id": 5104528,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/5104528?v=4",
"html_url": "https:\/\/github.com\/IIICTECH"
},
"html_url": "https:\/\/github.com\/IIICTECH\/-CVE-2020-0601-ECC---EXPLOIT",
"description": "CurveBall (CVE-2020-0601) - PoC CVE-2020-0601, or commonly referred to as CurveBall, is a vulnerability in which the signature of certificates using elliptic curve cryptography (ECC) is not correctly verified. Attackers can supply hand-rolled generators, bypassing validation, antivirus & all non-protections. ",
"fork": false,
"created_at": "2020-01-19T18:20:26Z",
"updated_at": "2020-01-27T17:28:54Z",
"pushed_at": "2020-01-19T18:26:33Z",
"stargazers_count": 1,
"watchers_count": 1,
"forks_count": 0,
"forks": 0,
"watchers": 1,
"score": 0
},
{
"id": 235000073,
"name": "CVE-2020-0601",
"full_name": "Ash112121\/CVE-2020-0601",
"owner": {
"login": "Ash112121",
"id": 50549802,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/50549802?v=4",
"html_url": "https:\/\/github.com\/Ash112121"
},
"html_url": "https:\/\/github.com\/Ash112121\/CVE-2020-0601",
"description": null,
"fork": false,
"created_at": "2020-01-20T02:04:05Z",
"updated_at": "2020-01-20T02:05:22Z",
"pushed_at": "2020-01-20T02:05:20Z",
"stargazers_count": 0,
"watchers_count": 0,
"forks_count": 0,
"forks": 0,
"watchers": 0,
"score": 0
},
{
"id": 235145190,
"name": "curveball",
"full_name": "gentilkiwi\/curveball",
"owner": {
"login": "gentilkiwi",
"id": 2307945,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/2307945?v=4",
"html_url": "https:\/\/github.com\/gentilkiwi"
},
"html_url": "https:\/\/github.com\/gentilkiwi\/curveball",
"description": "CVE-2020-0601 #curveball - Alternative Key Calculator",
"fork": false,
"created_at": "2020-01-20T16:24:20Z",
"updated_at": "2021-08-08T08:15:13Z",
"pushed_at": "2020-01-20T23:00:14Z",
"stargazers_count": 70,
"watchers_count": 70,
"forks_count": 12,
"forks": 12,
"watchers": 70,
"score": 0
},
{
"id": 235858699,
"name": "CurveBall",
"full_name": "Hans-MartinHannibalLauridsen\/CurveBall",
"owner": {
"login": "Hans-MartinHannibalLauridsen",
"id": 19854797,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/19854797?v=4",
"html_url": "https:\/\/github.com\/Hans-MartinHannibalLauridsen"
},
"html_url": "https:\/\/github.com\/Hans-MartinHannibalLauridsen\/CurveBall",
"description": "CVE-2020-0601: Windows CryptoAPI Vulnerability. (CurveBall\/ChainOfFools)",
"fork": false,
"created_at": "2020-01-23T18:26:48Z",
"updated_at": "2020-11-12T18:41:17Z",
"pushed_at": "2020-01-28T10:11:44Z",
"stargazers_count": 1,
"watchers_count": 1,
"forks_count": 0,
"forks": 0,
"watchers": 1,
"score": 0
},
{
"id": 236119532,
"name": "PoC_CurveBall",
"full_name": "apodlosky\/PoC_CurveBall",
"owner": {
"login": "apodlosky",
"id": 36350051,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/36350051?v=4",
"html_url": "https:\/\/github.com\/apodlosky"
},
"html_url": "https:\/\/github.com\/apodlosky\/PoC_CurveBall",
"description": "PoC for \"CurveBall\" CVE-2020-0601",
"fork": false,
"created_at": "2020-01-25T03:11:36Z",
"updated_at": "2020-02-19T04:00:05Z",
"pushed_at": "2020-02-19T04:00:03Z",
"stargazers_count": 0,
"watchers_count": 0,
"forks_count": 0,
"forks": 0,
"watchers": 0,
"score": 0
},
{
"id": 236845131,
"name": "Curveball",
"full_name": "ioncodes\/Curveball",
"owner": {
"login": "ioncodes",
"id": 18533297,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/18533297?v=4",
"html_url": "https:\/\/github.com\/ioncodes"
},
"html_url": "https:\/\/github.com\/ioncodes\/Curveball",
"description": "PoC for CVE-2020-0601 - CryptoAPI exploit",
"fork": false,
"created_at": "2020-01-28T21:24:54Z",
"updated_at": "2021-08-05T10:06:09Z",
"pushed_at": "2020-01-28T22:06:57Z",
"stargazers_count": 20,
"watchers_count": 20,
"forks_count": 3,
"forks": 3,
"watchers": 20,
"score": 0
},
{
"id": 236884560,
"name": "gringotts",
"full_name": "amlweems\/gringotts",
"owner": {
"login": "amlweems",
"id": 117625,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/117625?v=4",
"html_url": "https:\/\/github.com\/amlweems"
},
"html_url": "https:\/\/github.com\/amlweems\/gringotts",
"description": "proof of concept for CVE-2020-0601",
"fork": false,
"created_at": "2020-01-29T01:59:43Z",
"updated_at": "2020-01-29T02:12:44Z",
"pushed_at": "2020-01-30T20:16:15Z",
"stargazers_count": 0,
"watchers_count": 0,
"forks_count": 0,
"forks": 0,
"watchers": 0,
"score": 0
},
{
"id": 237977846,
"name": "CVE-2020-0601",
@ -551,75 +91,6 @@
"watchers": 2,
"score": 0
},
{
"id": 237996900,
"name": "CurveBallDetection",
"full_name": "talbeerysec\/CurveBallDetection",
"owner": {
"login": "talbeerysec",
"id": 25826743,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/25826743?v=4",
"html_url": "https:\/\/github.com\/talbeerysec"
},
"html_url": "https:\/\/github.com\/talbeerysec\/CurveBallDetection",
"description": "Resources related to CurveBall (CVE-2020-0601) detection",
"fork": false,
"created_at": "2020-02-03T15:25:54Z",
"updated_at": "2020-02-03T21:05:53Z",
"pushed_at": "2020-02-03T21:05:50Z",
"stargazers_count": 0,
"watchers_count": 0,
"forks_count": 2,
"forks": 2,
"watchers": 0,
"score": 0
},
{
"id": 238791221,
"name": "CurveballCertTool",
"full_name": "david4599\/CurveballCertTool",
"owner": {
"login": "david4599",
"id": 29437084,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/29437084?v=4",
"html_url": "https:\/\/github.com\/david4599"
},
"html_url": "https:\/\/github.com\/david4599\/CurveballCertTool",
"description": "PoC for CVE-2020-0601 vulnerability (Code Signing)",
"fork": false,
"created_at": "2020-02-06T21:46:31Z",
"updated_at": "2021-03-13T02:49:11Z",
"pushed_at": "2020-02-06T22:04:17Z",
"stargazers_count": 5,
"watchers_count": 5,
"forks_count": 3,
"forks": 3,
"watchers": 5,
"score": 0
},
{
"id": 241135389,
"name": "CVE-2020-0601-EXP",
"full_name": "eastmountyxz\/CVE-2020-0601-EXP",
"owner": {
"login": "eastmountyxz",
"id": 53172375,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/53172375?v=4",
"html_url": "https:\/\/github.com\/eastmountyxz"
},
"html_url": "https:\/\/github.com\/eastmountyxz\/CVE-2020-0601-EXP",
"description": "这资源是作者复现微软签字证书漏洞CVE-2020-0601结合相关资源及文章实现。推荐大家结合作者博客理解ECC算法、Windows验证机制并尝试自己复现可执行文件签名证书和HTTPS劫持的例子。作为网络安全初学者自己确实很菜但希望坚持下去加油",
"fork": false,
"created_at": "2020-02-17T15:01:54Z",
"updated_at": "2021-08-19T17:17:41Z",
"pushed_at": "2020-02-17T16:09:40Z",
"stargazers_count": 23,
"watchers_count": 23,
"forks_count": 0,
"forks": 0,
"watchers": 23,
"score": 0
},
{
"id": 241136874,
"name": "CVE-2018-20250-WinRAR",
@ -643,29 +114,6 @@
"watchers": 0,
"score": 0
},
{
"id": 241412565,
"name": "cve-2020-0601_poc",
"full_name": "gremwell\/cve-2020-0601_poc",
"owner": {
"login": "gremwell",
"id": 633734,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/633734?v=4",
"html_url": "https:\/\/github.com\/gremwell"
},
"html_url": "https:\/\/github.com\/gremwell\/cve-2020-0601_poc",
"description": "CVE-2020-0601 proof of concept",
"fork": false,
"created_at": "2020-02-18T16:36:49Z",
"updated_at": "2020-10-14T19:20:02Z",
"pushed_at": "2020-02-19T08:46:36Z",
"stargazers_count": 2,
"watchers_count": 2,
"forks_count": 3,
"forks": 3,
"watchers": 2,
"score": 0
},
{
"id": 243353551,
"name": "meetup-2-curveball",

69
2020/CVE-2020-0609.json
View file

@ -21,74 +21,5 @@
"forks": 8,
"watchers": 38,
"score": 0
},
{
"id": 235935839,
"name": "RDGScanner",
"full_name": "MalwareTech\/RDGScanner",
"owner": {
"login": "MalwareTech",
"id": 7256561,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/7256561?v=4",
"html_url": "https:\/\/github.com\/MalwareTech"
},
"html_url": "https:\/\/github.com\/MalwareTech\/RDGScanner",
"description": "A proof-of-concept scanner to check an RDG Gateway Server for vulnerabilities CVE-2020-0609 & CVE-2020-0610.",
"fork": false,
"created_at": "2020-01-24T03:52:49Z",
"updated_at": "2021-08-06T07:34:23Z",
"pushed_at": "2020-01-26T21:04:27Z",
"stargazers_count": 72,
"watchers_count": 72,
"forks_count": 32,
"forks": 32,
"watchers": 72,
"score": 0
},
{
"id": 236030102,
"name": "CVE-2020-0609",
"full_name": "Archi73ct\/CVE-2020-0609",
"owner": {
"login": "Archi73ct",
"id": 6298298,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/6298298?v=4",
"html_url": "https:\/\/github.com\/Archi73ct"
},
"html_url": "https:\/\/github.com\/Archi73ct\/CVE-2020-0609",
"description": null,
"fork": false,
"created_at": "2020-01-24T15:39:39Z",
"updated_at": "2020-01-28T12:36:06Z",
"pushed_at": "2020-01-28T12:36:04Z",
"stargazers_count": 1,
"watchers_count": 1,
"forks_count": 3,
"forks": 3,
"watchers": 1,
"score": 0
},
{
"id": 236072228,
"name": "BlueGate",
"full_name": "ioncodes\/BlueGate",
"owner": {
"login": "ioncodes",
"id": 18533297,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/18533297?v=4",
"html_url": "https:\/\/github.com\/ioncodes"
},
"html_url": "https:\/\/github.com\/ioncodes\/BlueGate",
"description": "PoC for the Remote Desktop Gateway vulnerability - CVE-2020-0609 & CVE-2020-0610",
"fork": false,
"created_at": "2020-01-24T19:47:45Z",
"updated_at": "2021-07-03T00:34:22Z",
"pushed_at": "2020-01-31T13:49:06Z",
"stargazers_count": 77,
"watchers_count": 77,
"forks_count": 20,
"forks": 20,
"watchers": 77,
"score": 0
}
]

48
2020/CVE-2020-0618.json
View file

@ -1,48 +0,0 @@
[
{
"id": 240657889,
"name": "CVE-2020-0618",
"full_name": "euphrat1ca\/CVE-2020-0618",
"owner": {
"login": "euphrat1ca",
"id": 23180818,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/23180818?v=4",
"html_url": "https:\/\/github.com\/euphrat1ca"
},
"html_url": "https:\/\/github.com\/euphrat1ca\/CVE-2020-0618",
"description": "SQL Server Reporting Services(CVE-2020-0618)中的RCE",
"fork": false,
"created_at": "2020-02-15T06:40:23Z",
"updated_at": "2021-08-11T14:02:02Z",
"pushed_at": "2020-02-15T06:41:54Z",
"stargazers_count": 195,
"watchers_count": 195,
"forks_count": 38,
"forks": 38,
"watchers": 195,
"score": 0
},
{
"id": 241408033,
"name": "cve-2020-0618",
"full_name": "wortell\/cve-2020-0618",
"owner": {
"login": "wortell",
"id": 54625905,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/54625905?v=4",
"html_url": "https:\/\/github.com\/wortell"
},
"html_url": "https:\/\/github.com\/wortell\/cve-2020-0618",
"description": "CVE-2020-0618 Honeypot",
"fork": false,
"created_at": "2020-02-18T16:17:19Z",
"updated_at": "2021-07-01T06:49:40Z",
"pushed_at": "2020-03-03T17:21:54Z",
"stargazers_count": 24,
"watchers_count": 24,
"forks_count": 5,
"forks": 5,
"watchers": 24,
"score": 0
}
]

46
2020/CVE-2020-0668.json
View file

@ -1,50 +1,4 @@
[
{
"id": 214392452,
"name": "SysTracingPoc",
"full_name": "itm4n\/SysTracingPoc",
"owner": {
"login": "itm4n",
"id": 30777390,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/30777390?v=4",
"html_url": "https:\/\/github.com\/itm4n"
},
"html_url": "https:\/\/github.com\/itm4n\/SysTracingPoc",
"description": "CVE-2020-0668 - Microsoft Windows Service Tracing Arbitrary File Move Local Privilege Escalation Vulnerability",
"fork": false,
"created_at": "2019-10-11T09:08:02Z",
"updated_at": "2021-08-13T22:19:24Z",
"pushed_at": "2020-02-26T09:24:45Z",
"stargazers_count": 59,
"watchers_count": 59,
"forks_count": 23,
"forks": 23,
"watchers": 59,
"score": 0
},
{
"id": 241809572,
"name": "CVE-2020-0668",
"full_name": "RedCursorSecurityConsulting\/CVE-2020-0668",
"owner": {
"login": "RedCursorSecurityConsulting",
"id": 61265565,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/61265565?v=4",
"html_url": "https:\/\/github.com\/RedCursorSecurityConsulting"
},
"html_url": "https:\/\/github.com\/RedCursorSecurityConsulting\/CVE-2020-0668",
"description": "Use CVE-2020-0668 to perform an arbitrary privileged file move operation.",
"fork": false,
"created_at": "2020-02-20T06:22:40Z",
"updated_at": "2021-07-19T14:14:29Z",
"pushed_at": "2020-02-20T11:03:18Z",
"stargazers_count": 184,
"watchers_count": 184,
"forks_count": 51,
"forks": 51,
"watchers": 184,
"score": 0
},
{
"id": 243248025,
"name": "CVE-2020-0668",

23
2020/CVE-2020-0674.json
View file

@ -1,27 +1,4 @@
[
{
"id": 235790827,
"name": "CVE-2020-0674",
"full_name": "binaryfigments\/CVE-2020-0674",
"owner": {
"login": "binaryfigments",
"id": 2205121,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/2205121?v=4",
"html_url": "https:\/\/github.com\/binaryfigments"
},
"html_url": "https:\/\/github.com\/binaryfigments\/CVE-2020-0674",
"description": "Info about CVE-2020-0674",
"fork": false,
"created_at": "2020-01-23T12:30:51Z",
"updated_at": "2021-07-01T06:50:20Z",
"pushed_at": "2020-01-23T12:54:24Z",
"stargazers_count": 15,
"watchers_count": 15,
"forks_count": 9,
"forks": 9,
"watchers": 15,
"score": 0
},
{
"id": 262167867,
"name": "CVE-2020-0674-Exploit",

25
2020/CVE-2020-0683.json
View file

@ -1,25 +0,0 @@
[
{
"id": 239812937,
"name": "CVE-2020-0683",
"full_name": "padovah4ck\/CVE-2020-0683",
"owner": {
"login": "padovah4ck",
"id": 13963076,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/13963076?v=4",
"html_url": "https:\/\/github.com\/padovah4ck"
},
"html_url": "https:\/\/github.com\/padovah4ck\/CVE-2020-0683",
"description": "CVE-2020-0683 - Windows MSI “Installer service” Elevation of Privilege",
"fork": false,
"created_at": "2020-02-11T16:42:34Z",
"updated_at": "2021-08-17T19:38:10Z",
"pushed_at": "2020-02-11T21:34:28Z",
"stargazers_count": 256,
"watchers_count": 256,
"forks_count": 51,
"forks": 51,
"watchers": 256,
"score": 0
}
]

138
2020/CVE-2020-0688.json
View file

@ -1,50 +1,4 @@
[
{
"id": 243126851,
"name": "cve-2020-0688",
"full_name": "random-robbie\/cve-2020-0688",
"owner": {
"login": "random-robbie",
"id": 4902869,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/4902869?v=4",
"html_url": "https:\/\/github.com\/random-robbie"
},
"html_url": "https:\/\/github.com\/random-robbie\/cve-2020-0688",
"description": "cve-2020-0688",
"fork": false,
"created_at": "2020-02-25T23:44:16Z",
"updated_at": "2021-06-29T06:26:22Z",
"pushed_at": "2020-02-26T00:58:39Z",
"stargazers_count": 156,
"watchers_count": 156,
"forks_count": 47,
"forks": 47,
"watchers": 156,
"score": 0
},
{
"id": 243257176,
"name": "CVE-2020-0688",
"full_name": "Jumbo-WJB\/CVE-2020-0688",
"owner": {
"login": "Jumbo-WJB",
"id": 7954518,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/7954518?v=4",
"html_url": "https:\/\/github.com\/Jumbo-WJB"
},
"html_url": "https:\/\/github.com\/Jumbo-WJB\/CVE-2020-0688",
"description": "CVE-2020-0688 - Exchange",
"fork": false,
"created_at": "2020-02-26T12:28:11Z",
"updated_at": "2021-08-27T01:45:19Z",
"pushed_at": "2020-02-27T03:50:07Z",
"stargazers_count": 60,
"watchers_count": 60,
"forks_count": 23,
"forks": 23,
"watchers": 60,
"score": 0
},
{
"id": 243416592,
"name": "cve-2020-0688",
@ -68,29 +22,6 @@
"watchers": 274,
"score": 0
},
{
"id": 243531424,
"name": "CVE-2020-0688_EXP",
"full_name": "Yt1g3r\/CVE-2020-0688_EXP",
"owner": {
"login": "Yt1g3r",
"id": 12625147,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/12625147?v=4",
"html_url": "https:\/\/github.com\/Yt1g3r"
},
"html_url": "https:\/\/github.com\/Yt1g3r\/CVE-2020-0688_EXP",
"description": "CVE-2020-0688_EXP Auto trigger payload & encrypt method",
"fork": false,
"created_at": "2020-02-27T13:53:46Z",
"updated_at": "2021-08-08T03:30:23Z",
"pushed_at": "2020-02-27T15:57:53Z",
"stargazers_count": 143,
"watchers_count": 143,
"forks_count": 61,
"forks": 61,
"watchers": 143,
"score": 0
},
{
"id": 243640997,
"name": "CVE-2020-0688",
@ -114,29 +45,6 @@
"watchers": 1,
"score": 0
},
{
"id": 243672879,
"name": "cve-2020-0688",
"full_name": "truongtn\/cve-2020-0688",
"owner": {
"login": "truongtn",
"id": 11813006,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/11813006?v=4",
"html_url": "https:\/\/github.com\/truongtn"
},
"html_url": "https:\/\/github.com\/truongtn\/cve-2020-0688",
"description": "I made this script for conducting CVE-2020-0688 more rapidly. It helps to improve checking the vuln, reducing hugely steps for that",
"fork": false,
"created_at": "2020-02-28T03:47:40Z",
"updated_at": "2020-02-28T09:39:14Z",
"pushed_at": "2020-02-28T04:04:54Z",
"stargazers_count": 1,
"watchers_count": 1,
"forks_count": 0,
"forks": 0,
"watchers": 1,
"score": 0
},
{
"id": 243801603,
"name": "CVE-2020-0688-Scanner",
@ -160,29 +68,6 @@
"watchers": 36,
"score": 0
},
{
"id": 243813543,
"name": "CVE-2020-0688",
"full_name": "youncyb\/CVE-2020-0688",
"owner": {
"login": "youncyb",
"id": 33374470,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/33374470?v=4",
"html_url": "https:\/\/github.com\/youncyb"
},
"html_url": "https:\/\/github.com\/youncyb\/CVE-2020-0688",
"description": "CVE-2020-0688",
"fork": false,
"created_at": "2020-02-28T17:03:53Z",
"updated_at": "2021-03-13T00:34:36Z",
"pushed_at": "2020-02-28T17:07:15Z",
"stargazers_count": 9,
"watchers_count": 9,
"forks_count": 2,
"forks": 2,
"watchers": 9,
"score": 0
},
{
"id": 244149446,
"name": "CVE-2020-0688",
@ -206,29 +91,6 @@
"watchers": 297,
"score": 0
},
{
"id": 245013193,
"name": "PSForgot2kEyXCHANGE",
"full_name": "justin-p\/PSForgot2kEyXCHANGE",
"owner": {
"login": "justin-p",
"id": 8249280,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/8249280?v=4",
"html_url": "https:\/\/github.com\/justin-p"
},
"html_url": "https:\/\/github.com\/justin-p\/PSForgot2kEyXCHANGE",
"description": "PoC for Forgot2kEyXCHANGE (CVE-2020-0688) written in PowerShell",
"fork": false,
"created_at": "2020-03-04T22:02:30Z",
"updated_at": "2021-04-05T20:29:00Z",
"pushed_at": "2020-03-05T08:02:57Z",
"stargazers_count": 4,
"watchers_count": 4,
"forks_count": 5,
"forks": 5,
"watchers": 4,
"score": 0
},
{
"id": 248554405,
"name": "CVE-2020-0688",

25
2020/CVE-2020-0728.json
View file

@ -1,25 +0,0 @@
[
{
"id": 240129027,
"name": "CVE-2020-0728",
"full_name": "irsl\/CVE-2020-0728",
"owner": {
"login": "irsl",
"id": 6357121,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/6357121?v=4",
"html_url": "https:\/\/github.com\/irsl"
},
"html_url": "https:\/\/github.com\/irsl\/CVE-2020-0728",
"description": "Proof of Concept code for CVE-2020-0728",
"fork": false,
"created_at": "2020-02-12T22:32:28Z",
"updated_at": "2021-01-04T06:01:03Z",
"pushed_at": "2020-02-12T22:50:22Z",
"stargazers_count": 42,
"watchers_count": 42,
"forks_count": 12,
"forks": 12,
"watchers": 42,
"score": 0
}
]

23
2020/CVE-2020-0753.json
View file

@ -21,28 +21,5 @@
"forks": 11,
"watchers": 15,
"score": 0
},
{
"id": 242502226,
"name": "CVE-2020-0753-and-CVE-2020-0754",
"full_name": "VikasVarshney\/CVE-2020-0753-and-CVE-2020-0754",
"owner": {
"login": "VikasVarshney",
"id": 3353731,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/3353731?v=4",
"html_url": "https:\/\/github.com\/VikasVarshney"
},
"html_url": "https:\/\/github.com\/VikasVarshney\/CVE-2020-0753-and-CVE-2020-0754",
"description": "Writeup and POC for CVE-2020-0753, CVE-2020-0754 and six unfixed Window DOS Vulnerabilities.",
"fork": false,
"created_at": "2020-02-23T11:10:49Z",
"updated_at": "2020-03-11T13:36:15Z",
"pushed_at": "2020-02-22T13:57:48Z",
"stargazers_count": 3,
"watchers_count": 3,
"forks_count": 12,
"forks": 12,
"watchers": 3,
"score": 0
}
]

8
2020/CVE-2020-0796.json
View file

@ -1554,13 +1554,13 @@
"description": "MS CVE 2020-0796 SMB",
"fork": false,
"created_at": "2021-03-07T17:24:42Z",
"updated_at": "2021-08-23T03:00:18Z",
"updated_at": "2021-08-28T17:34:14Z",
"pushed_at": "2021-08-23T02:59:13Z",
"stargazers_count": 6,
"watchers_count": 6,
"stargazers_count": 7,
"watchers_count": 7,
"forks_count": 0,
"forks": 0,
"watchers": 6,
"watchers": 7,
"score": 0
},
{

8
2020/CVE-2020-13942.json
View file

@ -36,13 +36,13 @@
"description": "CVE-2020-13942 unauthenticated RCE POC through MVEL and OGNL injection",
"fork": false,
"created_at": "2020-11-19T08:22:17Z",
"updated_at": "2021-05-28T13:16:50Z",
"updated_at": "2021-08-28T18:08:32Z",
"pushed_at": "2020-12-21T12:48:48Z",
"stargazers_count": 23,
"watchers_count": 23,
"stargazers_count": 24,
"watchers_count": 24,
"forks_count": 11,
"forks": 11,
"watchers": 23,
"watchers": 24,
"score": 0
},
{

8
2020/CVE-2020-14882.json
View file

@ -13,13 +13,13 @@
"description": "Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340",
"fork": false,
"created_at": "2020-04-01T09:33:35Z",
"updated_at": "2021-08-28T05:54:29Z",
"updated_at": "2021-08-28T19:43:32Z",
"pushed_at": "2021-04-04T09:13:57Z",
"stargazers_count": 2815,
"watchers_count": 2815,
"stargazers_count": 2816,
"watchers_count": 2816,
"forks_count": 815,
"forks": 815,
"watchers": 2815,
"watchers": 2816,
"score": 0
},
{

25
2020/CVE-2020-1611.json
View file

@ -1,25 +0,0 @@
[
{
"id": 235582404,
"name": "CVE-2020-1611",
"full_name": "Ibonok\/CVE-2020-1611",
"owner": {
"login": "Ibonok",
"id": 37837775,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/37837775?v=4",
"html_url": "https:\/\/github.com\/Ibonok"
},
"html_url": "https:\/\/github.com\/Ibonok\/CVE-2020-1611",
"description": "Juniper Junos Space (CVE-2020-1611) (PoC)",
"fork": false,
"created_at": "2020-01-22T13:45:21Z",
"updated_at": "2021-07-31T00:46:51Z",
"pushed_at": "2020-01-22T14:01:32Z",
"stargazers_count": 24,
"watchers_count": 24,
"forks_count": 8,
"forks": 8,
"watchers": 24,
"score": 0
}
]

8
2020/CVE-2020-17087.json
View file

@ -59,13 +59,13 @@
"description": "Techniques based on named pipes for pool overflow exploitation targeting the most recent (and oldest) Windows versions demonstrated on CVE-2020-17087 and an off-by-one overflow",
"fork": false,
"created_at": "2021-07-02T16:03:16Z",
"updated_at": "2021-08-20T03:18:30Z",
"updated_at": "2021-08-28T19:27:06Z",
"pushed_at": "2021-08-15T16:41:05Z",
"stargazers_count": 107,
"watchers_count": 107,
"stargazers_count": 109,
"watchers_count": 109,
"forks_count": 29,
"forks": 29,
"watchers": 107,
"watchers": 109,
"score": 0
}
]

345
2020/CVE-2020-1938.json
View file

@ -1,73 +1,4 @@
[
{
"id": 241934230,
"name": "CVE-2020-1938",
"full_name": "0nise\/CVE-2020-1938",
"owner": {
"login": "0nise",
"id": 18393907,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/18393907?v=4",
"html_url": "https:\/\/github.com\/0nise"
},
"html_url": "https:\/\/github.com\/0nise\/CVE-2020-1938",
"description": "CVE-2020-1938",
"fork": false,
"created_at": "2020-02-20T16:32:52Z",
"updated_at": "2021-08-24T11:10:49Z",
"pushed_at": "2020-02-25T02:04:16Z",
"stargazers_count": 233,
"watchers_count": 233,
"forks_count": 97,
"forks": 97,
"watchers": 233,
"score": 0
},
{
"id": 241940286,
"name": "CVE-2020-1938",
"full_name": "xindongzhuaizhuai\/CVE-2020-1938",
"owner": {
"login": "xindongzhuaizhuai",
"id": 18646159,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/18646159?v=4",
"html_url": "https:\/\/github.com\/xindongzhuaizhuai"
},
"html_url": "https:\/\/github.com\/xindongzhuaizhuai\/CVE-2020-1938",
"description": null,
"fork": false,
"created_at": "2020-02-20T17:00:02Z",
"updated_at": "2021-06-03T19:03:22Z",
"pushed_at": "2020-03-02T20:25:35Z",
"stargazers_count": 35,
"watchers_count": 35,
"forks_count": 25,
"forks": 25,
"watchers": 35,
"score": 0
},
{
"id": 241953243,
"name": "CNVD-2020-10487-Tomcat-ajp-POC",
"full_name": "nibiwodong\/CNVD-2020-10487-Tomcat-ajp-POC",
"owner": {
"login": "nibiwodong",
"id": 17465789,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/17465789?v=4",
"html_url": "https:\/\/github.com\/nibiwodong"
},
"html_url": "https:\/\/github.com\/nibiwodong\/CNVD-2020-10487-Tomcat-ajp-POC",
"description": "CNVD-2020-10487(CVE-2020-1938), tomcat ajp 文件读取漏洞poc",
"fork": false,
"created_at": "2020-02-20T17:57:54Z",
"updated_at": "2021-08-24T11:15:46Z",
"pushed_at": "2020-02-23T17:06:06Z",
"stargazers_count": 80,
"watchers_count": 80,
"forks_count": 56,
"forks": 56,
"watchers": 80,
"score": 0
},
{
"id": 241988804,
"name": "CNVD-2020-10487-Tomcat-Ajp-lfi-Scanner",
@ -91,213 +22,6 @@
"watchers": 232,
"score": 0
},
{
"id": 242038197,
"name": "CVE-2020-1938",
"full_name": "laolisafe\/CVE-2020-1938",
"owner": {
"login": "laolisafe",
"id": 45027935,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/45027935?v=4",
"html_url": "https:\/\/github.com\/laolisafe"
},
"html_url": "https:\/\/github.com\/laolisafe\/CVE-2020-1938",
"description": "CVE-2020-1938漏洞复现",
"fork": false,
"created_at": "2020-02-21T02:36:37Z",
"updated_at": "2021-06-30T04:46:24Z",
"pushed_at": "2020-02-21T02:49:57Z",
"stargazers_count": 35,
"watchers_count": 35,
"forks_count": 10,
"forks": 10,
"watchers": 35,
"score": 0
},
{
"id": 242054816,
"name": "CVE-2020-1938",
"full_name": "DaemonShao\/CVE-2020-1938",
"owner": {
"login": "DaemonShao",
"id": 24861334,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/24861334?v=4",
"html_url": "https:\/\/github.com\/DaemonShao"
},
"html_url": "https:\/\/github.com\/DaemonShao\/CVE-2020-1938",
"description": null,
"fork": false,
"created_at": "2020-02-21T04:34:40Z",
"updated_at": "2021-03-11T12:18:48Z",
"pushed_at": "2020-02-21T04:40:38Z",
"stargazers_count": 2,
"watchers_count": 2,
"forks_count": 0,
"forks": 0,
"watchers": 2,
"score": 0
},
{
"id": 242083141,
"name": "CVE-2020-1938-Tomact-file_include-file_read",
"full_name": "sv3nbeast\/CVE-2020-1938-Tomact-file_include-file_read",
"owner": {
"login": "sv3nbeast",
"id": 55974091,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/55974091?v=4",
"html_url": "https:\/\/github.com\/sv3nbeast"
},
"html_url": "https:\/\/github.com\/sv3nbeast\/CVE-2020-1938-Tomact-file_include-file_read",
"description": "Tomcat的文件包含及文件读取漏洞利用POC",
"fork": false,
"created_at": "2020-02-21T07:48:50Z",
"updated_at": "2021-08-24T08:45:55Z",
"pushed_at": "2020-02-21T10:19:52Z",
"stargazers_count": 28,
"watchers_count": 28,
"forks_count": 15,
"forks": 15,
"watchers": 28,
"score": 0
},
{
"id": 242093081,
"name": "CVE-2020-1938",
"full_name": "fairyming\/CVE-2020-1938",
"owner": {
"login": "fairyming",
"id": 44915879,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/44915879?v=4",
"html_url": "https:\/\/github.com\/fairyming"
},
"html_url": "https:\/\/github.com\/fairyming\/CVE-2020-1938",
"description": "在一定条件下可执行命令",
"fork": false,
"created_at": "2020-02-21T08:42:50Z",
"updated_at": "2021-06-14T07:38:36Z",
"pushed_at": "2020-02-21T08:45:51Z",
"stargazers_count": 6,
"watchers_count": 6,
"forks_count": 8,
"forks": 8,
"watchers": 6,
"score": 0
},
{
"id": 242107452,
"name": "CVE-2020-1938",
"full_name": "dacade\/CVE-2020-1938",
"owner": {
"login": "dacade",
"id": 31815137,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/31815137?v=4",
"html_url": "https:\/\/github.com\/dacade"
},
"html_url": "https:\/\/github.com\/dacade\/CVE-2020-1938",
"description": null,
"fork": false,
"created_at": "2020-02-21T09:56:19Z",
"updated_at": "2021-04-16T05:17:23Z",
"pushed_at": "2020-02-28T07:08:16Z",
"stargazers_count": 4,
"watchers_count": 4,
"forks_count": 4,
"forks": 4,
"watchers": 4,
"score": 0
},
{
"id": 242163769,
"name": "CVE-2020-1938TomcatAjpScanner",
"full_name": "woaiqiukui\/CVE-2020-1938TomcatAjpScanner",
"owner": {
"login": "woaiqiukui",
"id": 49117752,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/49117752?v=4",
"html_url": "https:\/\/github.com\/woaiqiukui"
},
"html_url": "https:\/\/github.com\/woaiqiukui\/CVE-2020-1938TomcatAjpScanner",
"description": "批量扫描TomcatAJP漏洞",
"fork": false,
"created_at": "2020-02-21T14:55:40Z",
"updated_at": "2021-05-12T10:00:23Z",
"pushed_at": "2020-02-22T01:58:22Z",
"stargazers_count": 11,
"watchers_count": 11,
"forks_count": 1,
"forks": 1,
"watchers": 11,
"score": 0
},
{
"id": 242193832,
"name": "tomcat-cve-2020-1938-check",
"full_name": "fatal0\/tomcat-cve-2020-1938-check",
"owner": {
"login": "fatal0",
"id": 6017581,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/6017581?v=4",
"html_url": "https:\/\/github.com\/fatal0"
},
"html_url": "https:\/\/github.com\/fatal0\/tomcat-cve-2020-1938-check",
"description": null,
"fork": false,
"created_at": "2020-02-21T17:24:45Z",
"updated_at": "2021-05-23T07:32:42Z",
"pushed_at": "2020-02-25T08:55:09Z",
"stargazers_count": 4,
"watchers_count": 4,
"forks_count": 1,
"forks": 1,
"watchers": 4,
"score": 0
},
{
"id": 242284250,
"name": "GhostCat-LFI-exp",
"full_name": "ze0r\/GhostCat-LFI-exp",
"owner": {
"login": "ze0r",
"id": 43227253,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/43227253?v=4",
"html_url": "https:\/\/github.com\/ze0r"
},
"html_url": "https:\/\/github.com\/ze0r\/GhostCat-LFI-exp",
"description": "CVE-2020-1938",
"fork": false,
"created_at": "2020-02-22T05:17:09Z",
"updated_at": "2021-07-03T10:33:02Z",
"pushed_at": "2020-02-22T05:23:53Z",
"stargazers_count": 11,
"watchers_count": 11,
"forks_count": 7,
"forks": 7,
"watchers": 11,
"score": 0
},
{
"id": 242345920,
"name": "CNVD-2020-10487-Bulk-verification",
"full_name": "delsadan\/CNVD-2020-10487-Bulk-verification",
"owner": {
"login": "delsadan",
"id": 22538623,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/22538623?v=4",
"html_url": "https:\/\/github.com\/delsadan"
},
"html_url": "https:\/\/github.com\/delsadan\/CNVD-2020-10487-Bulk-verification",
"description": "CNVD-2020-10487 OR CVE-2020-1938 批量验证脚本,批量验证,并自动截图,方便提交及复核",
"fork": false,
"created_at": "2020-02-22T13:25:57Z",
"updated_at": "2020-07-02T17:02:39Z",
"pushed_at": "2020-02-24T08:18:02Z",
"stargazers_count": 2,
"watchers_count": 2,
"forks_count": 3,
"forks": 3,
"watchers": 2,
"score": 0
},
{
"id": 242371713,
"name": "Ghostcat-CNVD-2020-10487",
@ -321,75 +45,6 @@
"watchers": 204,
"score": 0
},
{
"id": 243285368,
"name": "ghostcat-verification",
"full_name": "shaunmclernon\/ghostcat-verification",
"owner": {
"login": "shaunmclernon",
"id": 54109164,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/54109164?v=4",
"html_url": "https:\/\/github.com\/shaunmclernon"
},
"html_url": "https:\/\/github.com\/shaunmclernon\/ghostcat-verification",
"description": "Learnings on how to verify if vulnerable to Ghostcat (aka CVE-2020-1938)",
"fork": false,
"created_at": "2020-02-26T14:40:12Z",
"updated_at": "2021-03-13T03:20:21Z",
"pushed_at": "2020-02-26T15:33:58Z",
"stargazers_count": 1,
"watchers_count": 1,
"forks_count": 0,
"forks": 0,
"watchers": 1,
"score": 0
},
{
"id": 243545601,
"name": "Ghostcat-CVE-2020-1938",
"full_name": "Zaziki1337\/Ghostcat-CVE-2020-1938",
"owner": {
"login": "Zaziki1337",
"id": 3006203,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/3006203?v=4",
"html_url": "https:\/\/github.com\/Zaziki1337"
},
"html_url": "https:\/\/github.com\/Zaziki1337\/Ghostcat-CVE-2020-1938",
"description": "Test Explo for Ghostcat CVE-2020-1938",
"fork": false,
"created_at": "2020-02-27T15:07:30Z",
"updated_at": "2020-02-27T15:12:15Z",
"pushed_at": "2020-02-27T15:12:13Z",
"stargazers_count": 0,
"watchers_count": 0,
"forks_count": 0,
"forks": 0,
"watchers": 0,
"score": 0
},
{
"id": 244069452,
"name": "CVE-2020-1938-Clean-Version",
"full_name": "w4fz5uck5\/CVE-2020-1938-Clean-Version",
"owner": {
"login": "w4fz5uck5",
"id": 32375656,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/32375656?v=4",
"html_url": "https:\/\/github.com\/w4fz5uck5"
},
"html_url": "https:\/\/github.com\/w4fz5uck5\/CVE-2020-1938-Clean-Version",
"description": "CVE-2020-1938(GhostCat) clean and readable code version",
"fork": false,
"created_at": "2020-03-01T01:45:23Z",
"updated_at": "2020-09-02T07:29:16Z",
"pushed_at": "2020-03-01T02:43:03Z",
"stargazers_count": 8,
"watchers_count": 8,
"forks_count": 5,
"forks": 5,
"watchers": 8,
"score": 0
},
{
"id": 248716444,
"name": "CVE-2020-1938-Tool",

23
2020/CVE-2020-2551.json
View file

@ -22,29 +22,6 @@
"watchers": 1156,
"score": 0
},
{
"id": 234696172,
"name": "CVE-2020-2551",
"full_name": "jas502n\/CVE-2020-2551",
"owner": {
"login": "jas502n",
"id": 16593068,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/16593068?v=4",
"html_url": "https:\/\/github.com\/jas502n"
},
"html_url": "https:\/\/github.com\/jas502n\/CVE-2020-2551",
"description": "Weblogic RCE with IIOP",
"fork": false,
"created_at": "2020-01-18T07:08:06Z",
"updated_at": "2021-08-05T01:31:45Z",
"pushed_at": "2020-01-18T07:14:34Z",
"stargazers_count": 78,
"watchers_count": 78,
"forks_count": 14,
"forks": 14,
"watchers": 78,
"score": 0
},
{
"id": 234901198,
"name": "CVE-2020-2551",

23
2020/CVE-2020-2555.json
View file

@ -1,27 +1,4 @@
[
{
"id": 245452290,
"name": "CVE-2020-2555",
"full_name": "Hu3sky\/CVE-2020-2555",
"owner": {
"login": "Hu3sky",
"id": 37403964,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/37403964?v=4",
"html_url": "https:\/\/github.com\/Hu3sky"
},
"html_url": "https:\/\/github.com\/Hu3sky\/CVE-2020-2555",
"description": null,
"fork": false,
"created_at": "2020-03-06T15:20:17Z",
"updated_at": "2020-03-06T15:43:21Z",
"pushed_at": "2020-03-06T15:29:00Z",
"stargazers_count": 2,
"watchers_count": 2,
"forks_count": 0,
"forks": 0,
"watchers": 2,
"score": 0
},
{
"id": 245462192,
"name": "CVE-2020-2555",

25
2020/CVE-2020-2655.json
View file

@ -1,25 +0,0 @@
[
{
"id": 233879183,
"name": "CVE-2020-2655-DemoServer",
"full_name": "RUB-NDS\/CVE-2020-2655-DemoServer",
"owner": {
"login": "RUB-NDS",
"id": 11559003,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/11559003?v=4",
"html_url": "https:\/\/github.com\/RUB-NDS"
},
"html_url": "https:\/\/github.com\/RUB-NDS\/CVE-2020-2655-DemoServer",
"description": null,
"fork": false,
"created_at": "2020-01-14T15:59:48Z",
"updated_at": "2020-03-20T23:04:07Z",
"pushed_at": "2020-01-20T10:45:47Z",
"stargazers_count": 5,
"watchers_count": 5,
"forks_count": 1,
"forks": 1,
"watchers": 5,
"score": 0
}
]

25
2020/CVE-2020-3833.json
View file

@ -1,25 +0,0 @@
[
{
"id": 235952111,
"name": "Safari-Address-Bar-Spoof-CVE-2020-3833-",
"full_name": "c0d3G33k\/Safari-Address-Bar-Spoof-CVE-2020-3833-",
"owner": {
"login": "c0d3G33k",
"id": 16446505,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/16446505?v=4",
"html_url": "https:\/\/github.com\/c0d3G33k"
},
"html_url": "https:\/\/github.com\/c0d3G33k\/Safari-Address-Bar-Spoof-CVE-2020-3833-",
"description": null,
"fork": false,
"created_at": "2020-01-24T06:35:07Z",
"updated_at": "2020-09-23T12:58:01Z",
"pushed_at": "2020-01-24T06:49:16Z",
"stargazers_count": 4,
"watchers_count": 4,
"forks_count": 1,
"forks": 1,
"watchers": 4,
"score": 0
}
]

25
2020/CVE-2020-5236.json
View file

@ -1,25 +0,0 @@
[
{
"id": 238621679,
"name": "CVE-2020-5236",
"full_name": "motikan2010\/CVE-2020-5236",
"owner": {
"login": "motikan2010",
"id": 3177297,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/3177297?v=4",
"html_url": "https:\/\/github.com\/motikan2010"
},
"html_url": "https:\/\/github.com\/motikan2010\/CVE-2020-5236",
"description": "Waitress 1.4.2 ReDoS - CVE-2020-5236 (Blog Sample Code)",
"fork": false,
"created_at": "2020-02-06T06:21:02Z",
"updated_at": "2020-08-27T17:38:17Z",
"pushed_at": "2020-02-06T09:45:23Z",
"stargazers_count": 2,
"watchers_count": 2,
"forks_count": 1,
"forks": 1,
"watchers": 2,
"score": 0
}
]

25
2020/CVE-2020-5398.json
View file

@ -1,25 +0,0 @@
[
{
"id": 234478120,
"name": "CVE-2020-5398",
"full_name": "motikan2010\/CVE-2020-5398",
"owner": {
"login": "motikan2010",
"id": 3177297,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/3177297?v=4",
"html_url": "https:\/\/github.com\/motikan2010"
},
"html_url": "https:\/\/github.com\/motikan2010\/CVE-2020-5398",
"description": "💣 CVE-2020-5398 - RFD(Reflected File Download) Attack for Spring MVC",
"fork": false,
"created_at": "2020-01-17T05:35:01Z",
"updated_at": "2021-06-30T10:28:42Z",
"pushed_at": "2020-01-22T04:58:59Z",
"stargazers_count": 82,
"watchers_count": 82,
"forks_count": 21,
"forks": 21,
"watchers": 82,
"score": 0
}
]

23
2020/CVE-2020-5509.json
View file

@ -1,27 +1,4 @@
[
{
"id": 231982886,
"name": "CVE-2020-5509",
"full_name": "FULLSHADE\/CVE-2020-5509",
"owner": {
"login": "FULLSHADE",
"id": 54753063,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/54753063?v=4",
"html_url": "https:\/\/github.com\/FULLSHADE"
},
"html_url": "https:\/\/github.com\/FULLSHADE\/CVE-2020-5509",
"description": "Car Rental Project v.1.0 Remote Code Execution",
"fork": false,
"created_at": "2020-01-05T22:13:24Z",
"updated_at": "2021-08-12T04:16:54Z",
"pushed_at": "2020-01-05T22:23:20Z",
"stargazers_count": 0,
"watchers_count": 0,
"forks_count": 0,
"forks": 0,
"watchers": 0,
"score": 0
},
{
"id": 319340829,
"name": "CVE-2020-5509",

25
2020/CVE-2020-72381.json
View file

@ -1,25 +0,0 @@
[
{
"id": 236367767,
"name": "CVE-2020-72381",
"full_name": "jdordonezn\/CVE-2020-72381",
"owner": {
"login": "jdordonezn",
"id": 20976774,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/20976774?v=4",
"html_url": "https:\/\/github.com\/jdordonezn"
},
"html_url": "https:\/\/github.com\/jdordonezn\/CVE-2020-72381",
"description": null,
"fork": false,
"created_at": "2020-01-26T19:56:34Z",
"updated_at": "2020-09-25T00:09:23Z",
"pushed_at": "2020-01-26T19:56:35Z",
"stargazers_count": 1,
"watchers_count": 1,
"forks_count": 0,
"forks": 0,
"watchers": 1,
"score": 0
}
]

25
2020/CVE-2020-7246.json
View file

@ -1,25 +0,0 @@
[
{
"id": 243797206,
"name": "CVE-2020-7246",
"full_name": "lnxcrew\/CVE-2020-7246",
"owner": {
"login": "lnxcrew",
"id": 61081854,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/61081854?v=4",
"html_url": "https:\/\/github.com\/lnxcrew"
},
"html_url": "https:\/\/github.com\/lnxcrew\/CVE-2020-7246",
"description": "[qdPM < 9.1 - Remote Code Execution](https:\/\/www.exploit-db.com\/exploits\/48146)",
"fork": false,
"created_at": "2020-02-28T15:44:53Z",
"updated_at": "2020-02-28T15:46:20Z",
"pushed_at": "2020-02-28T15:46:19Z",
"stargazers_count": 0,
"watchers_count": 0,
"forks_count": 1,
"forks": 1,
"watchers": 0,
"score": 0
}
]

69
2020/CVE-2020-7247.json
View file

@ -1,73 +1,4 @@
[
{
"id": 237289178,
"name": "cve-2020-7247-exploit",
"full_name": "FiroSolutions\/cve-2020-7247-exploit",
"owner": {
"login": "FiroSolutions",
"id": 43434507,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/43434507?v=4",
"html_url": "https:\/\/github.com\/FiroSolutions"
},
"html_url": "https:\/\/github.com\/FiroSolutions\/cve-2020-7247-exploit",
"description": "Python exploit of cve-2020-7247",
"fork": false,
"created_at": "2020-01-30T19:29:27Z",
"updated_at": "2021-02-07T16:45:48Z",
"pushed_at": "2020-02-19T10:55:15Z",
"stargazers_count": 24,
"watchers_count": 24,
"forks_count": 16,
"forks": 16,
"watchers": 24,
"score": 0
},
{
"id": 241011451,
"name": "cve-2020-7247",
"full_name": "superzerosec\/cve-2020-7247",
"owner": {
"login": "superzerosec",
"id": 57648217,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/57648217?v=4",
"html_url": "https:\/\/github.com\/superzerosec"
},
"html_url": "https:\/\/github.com\/superzerosec\/cve-2020-7247",
"description": "OpenSMTPD version 6.6.2 remote code execution exploit",
"fork": false,
"created_at": "2020-02-17T03:28:09Z",
"updated_at": "2020-05-17T23:55:06Z",
"pushed_at": "2020-02-18T06:57:20Z",
"stargazers_count": 1,
"watchers_count": 1,
"forks_count": 5,
"forks": 5,
"watchers": 1,
"score": 0
},
{
"id": 241337606,
"name": "CVE-2020-7247",
"full_name": "r0lh\/CVE-2020-7247",
"owner": {
"login": "r0lh",
"id": 51697374,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/51697374?v=4",
"html_url": "https:\/\/github.com\/r0lh"
},
"html_url": "https:\/\/github.com\/r0lh\/CVE-2020-7247",
"description": "Proof Of Concept Exploit for CVE-2020-7247 (Remote Execution on OpenSMTPD < 6.6.2",
"fork": false,
"created_at": "2020-02-18T10:52:38Z",
"updated_at": "2020-03-28T19:05:22Z",
"pushed_at": "2020-02-18T11:08:38Z",
"stargazers_count": 2,
"watchers_count": 2,
"forks_count": 0,
"forks": 0,
"watchers": 2,
"score": 0
},
{
"id": 334951447,
"name": "CVE-2020-7247",

46
2020/CVE-2020-7471.json
View file

@ -1,27 +1,4 @@
[
{
"id": 239774776,
"name": "CVE-2020-7471",
"full_name": "Saferman\/CVE-2020-7471",
"owner": {
"login": "Saferman",
"id": 17509858,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/17509858?v=4",
"html_url": "https:\/\/github.com\/Saferman"
},
"html_url": "https:\/\/github.com\/Saferman\/CVE-2020-7471",
"description": "django 漏洞CVE-2020-7471 Potential SQL injection via StringAgg(delimiter) 的漏洞环境和 POC",
"fork": false,
"created_at": "2020-02-11T13:57:14Z",
"updated_at": "2021-07-18T10:49:57Z",
"pushed_at": "2020-02-13T12:56:31Z",
"stargazers_count": 101,
"watchers_count": 101,
"forks_count": 21,
"forks": 21,
"watchers": 101,
"score": 0
},
{
"id": 240205875,
"name": "DjVul_StringAgg",
@ -45,29 +22,6 @@
"watchers": 0,
"score": 0
},
{
"id": 242260909,
"name": "CVE-2020-7471",
"full_name": "SNCKER\/CVE-2020-7471",
"owner": {
"login": "SNCKER",
"id": 49559334,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/49559334?v=4",
"html_url": "https:\/\/github.com\/SNCKER"
},
"html_url": "https:\/\/github.com\/SNCKER\/CVE-2020-7471",
"description": "CVE-2020-7471 Potential SQL injection via StringAgg(delimiter)",
"fork": false,
"created_at": "2020-02-22T01:32:40Z",
"updated_at": "2020-12-07T13:52:27Z",
"pushed_at": "2020-02-22T01:42:22Z",
"stargazers_count": 1,
"watchers_count": 1,
"forks_count": 1,
"forks": 1,
"watchers": 1,
"score": 0
},
{
"id": 284611609,
"name": "CTF_CVE-2020-7471",

48
2020/CVE-2020-7799.json
View file

@ -1,48 +0,0 @@
[
{
"id": 239452179,
"name": "cve-2020-7799",
"full_name": "Pikaqi\/cve-2020-7799",
"owner": {
"login": "Pikaqi",
"id": 29857108,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/29857108?v=4",
"html_url": "https:\/\/github.com\/Pikaqi"
},
"html_url": "https:\/\/github.com\/Pikaqi\/cve-2020-7799",
"description": "批量检测cve-2020-7799",
"fork": false,
"created_at": "2020-02-10T07:27:21Z",
"updated_at": "2020-02-10T08:08:44Z",
"pushed_at": "2020-02-10T08:08:42Z",
"stargazers_count": 0,
"watchers_count": 0,
"forks_count": 3,
"forks": 3,
"watchers": 0,
"score": 0
},
{
"id": 241617298,
"name": "CVE-2020-7799",
"full_name": "ianxtianxt\/CVE-2020-7799",
"owner": {
"login": "ianxtianxt",
"id": 45796484,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/45796484?v=4",
"html_url": "https:\/\/github.com\/ianxtianxt"
},
"html_url": "https:\/\/github.com\/ianxtianxt\/CVE-2020-7799",
"description": null,
"fork": false,
"created_at": "2020-02-19T12:33:24Z",
"updated_at": "2020-07-03T03:51:28Z",
"pushed_at": "2020-02-19T12:33:57Z",
"stargazers_count": 4,
"watchers_count": 4,
"forks_count": 2,
"forks": 2,
"watchers": 4,
"score": 0
}
]

25
2020/CVE-2020-7980.json
View file

@ -1,25 +0,0 @@
[
{
"id": 236865005,
"name": "Satellian-CVE-2020-7980",
"full_name": "Xh4H\/Satellian-CVE-2020-7980",
"owner": {
"login": "Xh4H",
"id": 20613820,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/20613820?v=4",
"html_url": "https:\/\/github.com\/Xh4H"
},
"html_url": "https:\/\/github.com\/Xh4H\/Satellian-CVE-2020-7980",
"description": "PoC script that shows RCE vulnerability over Intellian Satellite controller",
"fork": false,
"created_at": "2020-01-28T23:27:20Z",
"updated_at": "2021-08-13T21:27:22Z",
"pushed_at": "2020-01-30T11:42:26Z",
"stargazers_count": 48,
"watchers_count": 48,
"forks_count": 9,
"forks": 9,
"watchers": 48,
"score": 0
}
]

25
2020/CVE-2020-8012.json
View file

@ -1,25 +0,0 @@
[
{
"id": 89426502,
"name": "Exploit-Development",
"full_name": "wetw0rk\/Exploit-Development",
"owner": {
"login": "wetw0rk",
"id": 20763546,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/20763546?v=4",
"html_url": "https:\/\/github.com\/wetw0rk"
},
"html_url": "https:\/\/github.com\/wetw0rk\/Exploit-Development",
"description": "CVE-2020-8012, CVE-2016-10709, CVE-2017-17099, CVE-2017-18047, CVE-2019-1003000, CVE-2018-1999002",
"fork": false,
"created_at": "2017-04-26T02:03:43Z",
"updated_at": "2021-07-05T09:39:27Z",
"pushed_at": "2020-02-29T21:27:15Z",
"stargazers_count": 52,
"watchers_count": 52,
"forks_count": 33,
"forks": 33,
"watchers": 52,
"score": 0
}
]

25
2020/CVE-2020-8809.json
View file

@ -1,25 +0,0 @@
[
{
"id": 242745604,
"name": "gxdlmsdirector-cve",
"full_name": "seqred-s-a\/gxdlmsdirector-cve",
"owner": {
"login": "seqred-s-a",
"id": 49437606,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/49437606?v=4",
"html_url": "https:\/\/github.com\/seqred-s-a"
},
"html_url": "https:\/\/github.com\/seqred-s-a\/gxdlmsdirector-cve",
"description": "CVE-2020-8809 and CVE-2020-8810",
"fork": false,
"created_at": "2020-02-24T13:38:35Z",
"updated_at": "2020-02-24T14:09:07Z",
"pushed_at": "2020-02-24T14:09:05Z",
"stargazers_count": 0,
"watchers_count": 0,
"forks_count": 1,
"forks": 1,
"watchers": 0,
"score": 0
}
]

23
2020/CVE-2020-8813.json
View file

@ -1,27 +1,4 @@
[
{
"id": 242373353,
"name": "CVE-2020-8813",
"full_name": "mhaskar\/CVE-2020-8813",
"owner": {
"login": "mhaskar",
"id": 6861215,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/6861215?v=4",
"html_url": "https:\/\/github.com\/mhaskar"
},
"html_url": "https:\/\/github.com\/mhaskar\/CVE-2020-8813",
"description": "The official exploit for Cacti v1.2.8 Remote Code Execution CVE-2020-8813",
"fork": false,
"created_at": "2020-02-22T16:27:41Z",
"updated_at": "2021-07-25T16:32:00Z",
"pushed_at": "2020-02-22T16:33:31Z",
"stargazers_count": 65,
"watchers_count": 65,
"forks_count": 20,
"forks": 20,
"watchers": 65,
"score": 0
},
{
"id": 366529600,
"name": "Cacti-CVE-2020-8813",

46
2020/CVE-2020-8840.json
View file

@ -1,27 +1,4 @@
[
{
"id": 242176659,
"name": "jackson-CVE-2020-8840",
"full_name": "jas502n\/jackson-CVE-2020-8840",
"owner": {
"login": "jas502n",
"id": 16593068,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/16593068?v=4",
"html_url": "https:\/\/github.com\/jas502n"
},
"html_url": "https:\/\/github.com\/jas502n\/jackson-CVE-2020-8840",
"description": "FasterXML\/jackson-databind 远程代码执行漏洞",
"fork": false,
"created_at": "2020-02-21T15:58:25Z",
"updated_at": "2021-07-19T06:22:43Z",
"pushed_at": "2020-02-21T16:03:28Z",
"stargazers_count": 73,
"watchers_count": 73,
"forks_count": 16,
"forks": 16,
"watchers": 73,
"score": 0
},
{
"id": 242452403,
"name": "FastJson1.2.62-RCE",
@ -45,29 +22,6 @@
"watchers": 13,
"score": 0
},
{
"id": 242675357,
"name": "CVE-2020-8840",
"full_name": "fairyming\/CVE-2020-8840",
"owner": {
"login": "fairyming",
"id": 44915879,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/44915879?v=4",
"html_url": "https:\/\/github.com\/fairyming"
},
"html_url": "https:\/\/github.com\/fairyming\/CVE-2020-8840",
"description": "CVE-2020-8840FasterXML\/jackson-databind 远程代码执行漏洞",
"fork": false,
"created_at": "2020-02-24T07:43:12Z",
"updated_at": "2021-07-15T13:47:36Z",
"pushed_at": "2020-02-24T07:45:37Z",
"stargazers_count": 29,
"watchers_count": 29,
"forks_count": 9,
"forks": 9,
"watchers": 29,
"score": 0
},
{
"id": 242758333,
"name": "CVE-2020-8840",

25
2020/CVE-2020-9038.json
View file

@ -1,25 +0,0 @@
[
{
"id": 243498604,
"name": "CVE-2020-9038",
"full_name": "JavierOlmedo\/CVE-2020-9038",
"owner": {
"login": "JavierOlmedo",
"id": 15904748,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/15904748?v=4",
"html_url": "https:\/\/github.com\/JavierOlmedo"
},
"html_url": "https:\/\/github.com\/JavierOlmedo\/CVE-2020-9038",
"description": "Disclosure report of CVE-2020-9038",
"fork": false,
"created_at": "2020-02-27T11:02:16Z",
"updated_at": "2020-05-14T13:42:12Z",
"pushed_at": "2020-02-27T11:38:30Z",
"stargazers_count": 3,
"watchers_count": 3,
"forks_count": 0,
"forks": 0,
"watchers": 3,
"score": 0
}
]

25
2020/CVE-2020-9442.json
View file

@ -1,25 +0,0 @@
[
{
"id": 243652977,
"name": "CVE-2020-9442",
"full_name": "hessandrew\/CVE-2020-9442",
"owner": {
"login": "hessandrew",
"id": 45692132,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/45692132?v=4",
"html_url": "https:\/\/github.com\/hessandrew"
},
"html_url": "https:\/\/github.com\/hessandrew\/CVE-2020-9442",
"description": "OpenVPN Connect for Windows (MSI) - 3.1.0.361 - Privilege Escalation",
"fork": false,
"created_at": "2020-02-28T01:27:08Z",
"updated_at": "2021-06-23T09:46:09Z",
"pushed_at": "2020-02-28T02:22:03Z",
"stargazers_count": 25,
"watchers_count": 25,
"forks_count": 5,
"forks": 5,
"watchers": 25,
"score": 0
}
]

8
2020/CVE-2020-9484.json
View file

@ -105,13 +105,13 @@
"description": "CVE-2020-9484 Mass Scanner, Scan a list of urls for Apache Tomcat deserialization (CVE-2020-9484) which could lead to RCE ",
"fork": false,
"created_at": "2020-06-05T20:40:28Z",
"updated_at": "2021-03-16T19:14:43Z",
"updated_at": "2021-08-28T18:35:49Z",
"pushed_at": "2020-06-05T21:04:43Z",
"stargazers_count": 30,
"watchers_count": 30,
"stargazers_count": 29,
"watchers_count": 29,
"forks_count": 13,
"forks": 13,
"watchers": 30,
"watchers": 29,
"score": 0
},
{

25
2020/CVE-2020-9547.json
View file

@ -1,25 +0,0 @@
[
{
"id": 244379753,
"name": "CVE-2020-9547",
"full_name": "fairyming\/CVE-2020-9547",
"owner": {
"login": "fairyming",
"id": 44915879,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/44915879?v=4",
"html_url": "https:\/\/github.com\/fairyming"
},
"html_url": "https:\/\/github.com\/fairyming\/CVE-2020-9547",
"description": "CVE-2020-9547FasterXML\/jackson-databind 远程代码执行漏洞",
"fork": false,
"created_at": "2020-03-02T13:37:21Z",
"updated_at": "2021-07-19T06:22:36Z",
"pushed_at": "2020-03-02T14:18:24Z",
"stargazers_count": 22,
"watchers_count": 22,
"forks_count": 6,
"forks": 6,
"watchers": 22,
"score": 0
}
]

25
2020/CVE-2020-9548.json
View file

@ -1,25 +0,0 @@
[
{
"id": 244381163,
"name": "CVE-2020-9548",
"full_name": "fairyming\/CVE-2020-9548",
"owner": {
"login": "fairyming",
"id": 44915879,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/44915879?v=4",
"html_url": "https:\/\/github.com\/fairyming"
},
"html_url": "https:\/\/github.com\/fairyming\/CVE-2020-9548",
"description": "CVE-2020-9548FasterXML\/jackson-databind 远程代码执行漏洞",
"fork": false,
"created_at": "2020-03-02T13:43:47Z",
"updated_at": "2021-07-26T06:29:29Z",
"pushed_at": "2020-03-02T14:18:48Z",
"stargazers_count": 22,
"watchers_count": 22,
"forks_count": 11,
"forks": 11,
"watchers": 22,
"score": 0
}
]

8
2021/CVE-2021-26855.json
View file

@ -611,13 +611,13 @@
"description": "ProxyLogon is the formally generic name for CVE-2021-26855, a vulnerability on Microsoft Exchange Server that allows an attacker bypassing the authentication and impersonating as the admin. We have also chained this bug with another post-auth arbitrary-file-write vulnerability, CVE-2021-27065, to get code execution.",
"fork": false,
"created_at": "2021-03-16T07:31:25Z",
"updated_at": "2021-08-23T09:03:49Z",
"updated_at": "2021-08-28T15:25:35Z",
"pushed_at": "2021-05-01T17:20:15Z",
"stargazers_count": 12,
"watchers_count": 12,
"stargazers_count": 13,
"watchers_count": 13,
"forks_count": 2,
"forks": 2,
"watchers": 12,
"watchers": 13,
"score": 0
},
{

8
2021/CVE-2021-26943.json
View file

@ -13,13 +13,13 @@
"description": "The report and the exploit of CVE-2021-26943, the kernel-to-SMM local privilege escalation vulnerability in ASUS UX360CA BIOS version 303.",
"fork": false,
"created_at": "2020-12-31T16:30:02Z",
"updated_at": "2021-08-26T22:48:00Z",
"updated_at": "2021-08-28T18:08:36Z",
"pushed_at": "2021-03-29T12:33:38Z",
"stargazers_count": 72,
"watchers_count": 72,
"stargazers_count": 73,
"watchers_count": 73,
"forks_count": 17,
"forks": 17,
"watchers": 72,
"watchers": 73,
"score": 0
}
]

8
2021/CVE-2021-3156.json
View file

@ -588,13 +588,13 @@
"description": null,
"fork": false,
"created_at": "2021-02-03T09:04:14Z",
"updated_at": "2021-02-03T09:04:14Z",
"updated_at": "2021-08-28T18:19:05Z",
"pushed_at": "2021-02-03T09:04:15Z",
"stargazers_count": 0,
"watchers_count": 0,
"stargazers_count": 1,
"watchers_count": 1,
"forks_count": 0,
"forks": 0,
"watchers": 0,
"watchers": 1,
"score": 0
},
{

4
2021/CVE-2021-36934.json
View file

@ -247,8 +247,8 @@
"pushed_at": "2021-07-25T15:41:33Z",
"stargazers_count": 190,
"watchers_count": 190,
"forks_count": 46,
"forks": 46,
"forks_count": 47,
"forks": 47,
"watchers": 190,
"score": 0
},

205
README.md
View file

@ -2081,7 +2081,6 @@ In the ioctl handlers of the Mediatek Command Queue driver, there is a possible
</code>
- [R0rt1z2/AutomatedRoot](https://github.com/R0rt1z2/AutomatedRoot)
- [TheRealJunior/mtk-su-reverse-cve-2020-0069](https://github.com/TheRealJunior/mtk-su-reverse-cve-2020-0069)
- [yanglingxi1993/CVE-2020-0069](https://github.com/yanglingxi1993/CVE-2020-0069)
- [quarkslab/CVE-2020-0069_poc](https://github.com/quarkslab/CVE-2020-0069_poc)
@ -2165,35 +2164,11 @@ Race condition in the Intel(R) Driver and Support Assistant before version 20.1.
A spoofing vulnerability exists in the way Windows CryptoAPI (Crypt32.dll) validates Elliptic Curve Cryptography (ECC) certificates.An attacker could exploit the vulnerability by using a spoofed code-signing certificate to sign a malicious executable, making it appear the file was from a trusted, legitimate source, aka 'Windows CryptoAPI Spoofing Vulnerability'.
</code>
- [nissan-sudo/CVE-2020-0601](https://github.com/nissan-sudo/CVE-2020-0601)
- [0xxon/cve-2020-0601](https://github.com/0xxon/cve-2020-0601)
- [SherlockSec/CVE-2020-0601](https://github.com/SherlockSec/CVE-2020-0601)
- [JPurrier/CVE-2020-0601](https://github.com/JPurrier/CVE-2020-0601)
- [0xxon/cve-2020-0601-plugin](https://github.com/0xxon/cve-2020-0601-plugin)
- [kudelskisecurity/chainoffools](https://github.com/kudelskisecurity/chainoffools)
- [RrUZi/Awesome-CVE-2020-0601](https://github.com/RrUZi/Awesome-CVE-2020-0601)
- [BleepSec/CVE-2020-0601](https://github.com/BleepSec/CVE-2020-0601)
- [apmunch/CVE-2020-0601](https://github.com/apmunch/CVE-2020-0601)
- [saleemrashid/badecparams](https://github.com/saleemrashid/badecparams)
- [0xxon/cve-2020-0601-utils](https://github.com/0xxon/cve-2020-0601-utils)
- [Doug-Moody/Windows10_Cumulative_Updates_PowerShell](https://github.com/Doug-Moody/Windows10_Cumulative_Updates_PowerShell)
- [MarkusZehnle/CVE-2020-0601](https://github.com/MarkusZehnle/CVE-2020-0601)
- [YoannDqr/CVE-2020-0601](https://github.com/YoannDqr/CVE-2020-0601)
- [thimelp/cve-2020-0601-Perl](https://github.com/thimelp/cve-2020-0601-Perl)
- [dlee35/curveball_lua](https://github.com/dlee35/curveball_lua)
- [IIICTECH/-CVE-2020-0601-ECC---EXPLOIT](https://github.com/IIICTECH/-CVE-2020-0601-ECC---EXPLOIT)
- [Ash112121/CVE-2020-0601](https://github.com/Ash112121/CVE-2020-0601)
- [gentilkiwi/curveball](https://github.com/gentilkiwi/curveball)
- [Hans-MartinHannibalLauridsen/CurveBall](https://github.com/Hans-MartinHannibalLauridsen/CurveBall)
- [apodlosky/PoC_CurveBall](https://github.com/apodlosky/PoC_CurveBall)
- [ioncodes/Curveball](https://github.com/ioncodes/Curveball)
- [amlweems/gringotts](https://github.com/amlweems/gringotts)
- [yanghaoi/CVE-2020-0601](https://github.com/yanghaoi/CVE-2020-0601)
- [talbeerysec/CurveBallDetection](https://github.com/talbeerysec/CurveBallDetection)
- [david4599/CurveballCertTool](https://github.com/david4599/CurveballCertTool)
- [eastmountyxz/CVE-2020-0601-EXP](https://github.com/eastmountyxz/CVE-2020-0601-EXP)
- [eastmountyxz/CVE-2018-20250-WinRAR](https://github.com/eastmountyxz/CVE-2018-20250-WinRAR)
- [gremwell/cve-2020-0601_poc](https://github.com/gremwell/cve-2020-0601_poc)
- [bsides-rijeka/meetup-2-curveball](https://github.com/bsides-rijeka/meetup-2-curveball)
- [exploitblizzard/CVE-2020-0601-spoofkey](https://github.com/exploitblizzard/CVE-2020-0601-spoofkey)
- [ShayNehmad/twoplustwo](https://github.com/ShayNehmad/twoplustwo)
@ -2206,18 +2181,6 @@ A remote code execution vulnerability exists in Windows Remote Desktop Gateway (
</code>
- [ruppde/rdg_scanner_cve-2020-0609](https://github.com/ruppde/rdg_scanner_cve-2020-0609)
- [MalwareTech/RDGScanner](https://github.com/MalwareTech/RDGScanner)
- [Archi73ct/CVE-2020-0609](https://github.com/Archi73ct/CVE-2020-0609)
- [ioncodes/BlueGate](https://github.com/ioncodes/BlueGate)
### CVE-2020-0618 (2020-02-11)
<code>
A remote code execution vulnerability exists in Microsoft SQL Server Reporting Services when it incorrectly handles page requests, aka 'Microsoft SQL Server Reporting Services Remote Code Execution Vulnerability'.
</code>
- [euphrat1ca/CVE-2020-0618](https://github.com/euphrat1ca/CVE-2020-0618)
- [wortell/cve-2020-0618](https://github.com/wortell/cve-2020-0618)
### CVE-2020-0624 (2020-01-14)
@ -2233,8 +2196,6 @@ An elevation of privilege vulnerability exists in Windows when the Win32k compon
An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory, aka 'Windows Kernel Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0669, CVE-2020-0670, CVE-2020-0671, CVE-2020-0672.
</code>
- [itm4n/SysTracingPoc](https://github.com/itm4n/SysTracingPoc)
- [RedCursorSecurityConsulting/CVE-2020-0668](https://github.com/RedCursorSecurityConsulting/CVE-2020-0668)
- [Nan3r/CVE-2020-0668](https://github.com/Nan3r/CVE-2020-0668)
### CVE-2020-0674 (2020-02-11)
@ -2243,35 +2204,20 @@ An elevation of privilege vulnerability exists in the way that the Windows Kerne
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-0673, CVE-2020-0710, CVE-2020-0711, CVE-2020-0712, CVE-2020-0713, CVE-2020-0767.
</code>
- [binaryfigments/CVE-2020-0674](https://github.com/binaryfigments/CVE-2020-0674)
- [maxpl0it/CVE-2020-0674-Exploit](https://github.com/maxpl0it/CVE-2020-0674-Exploit)
- [Ken-Abruzzi/CVE-2020-0674](https://github.com/Ken-Abruzzi/CVE-2020-0674)
- [Neko2sh1ro/CVE-2020-0674-PoC](https://github.com/Neko2sh1ro/CVE-2020-0674-PoC)
### CVE-2020-0683 (2020-02-11)
<code>
An elevation of privilege vulnerability exists in the Windows Installer when MSI packages process symbolic links, aka 'Windows Installer Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2020-0686.
</code>
- [padovah4ck/CVE-2020-0683](https://github.com/padovah4ck/CVE-2020-0683)
### CVE-2020-0688 (2020-02-11)
<code>
A remote code execution vulnerability exists in Microsoft Exchange software when the software fails to properly handle objects in memory, aka 'Microsoft Exchange Memory Corruption Vulnerability'.
</code>
- [random-robbie/cve-2020-0688](https://github.com/random-robbie/cve-2020-0688)
- [Jumbo-WJB/CVE-2020-0688](https://github.com/Jumbo-WJB/CVE-2020-0688)
- [Ridter/cve-2020-0688](https://github.com/Ridter/cve-2020-0688)
- [Yt1g3r/CVE-2020-0688_EXP](https://github.com/Yt1g3r/CVE-2020-0688_EXP)
- [righter83/CVE-2020-0688](https://github.com/righter83/CVE-2020-0688)
- [truongtn/cve-2020-0688](https://github.com/truongtn/cve-2020-0688)
- [onSec-fr/CVE-2020-0688-Scanner](https://github.com/onSec-fr/CVE-2020-0688-Scanner)
- [youncyb/CVE-2020-0688](https://github.com/youncyb/CVE-2020-0688)
- [zcgonvh/CVE-2020-0688](https://github.com/zcgonvh/CVE-2020-0688)
- [justin-p/PSForgot2kEyXCHANGE](https://github.com/justin-p/PSForgot2kEyXCHANGE)
- [cert-lv/CVE-2020-0688](https://github.com/cert-lv/CVE-2020-0688)
- [ravinacademy/CVE-2020-0688](https://github.com/ravinacademy/CVE-2020-0688)
- [mahyarx/Exploit_CVE-2020-0688](https://github.com/mahyarx/Exploit_CVE-2020-0688)
@ -2283,14 +2229,6 @@ A remote code execution vulnerability exists in Microsoft Exchange software when
- [MrTiz/CVE-2020-0688](https://github.com/MrTiz/CVE-2020-0688)
- [ann0906/proxylogon](https://github.com/ann0906/proxylogon)
### CVE-2020-0728 (2020-02-11)
<code>
An information vulnerability exists when Windows Modules Installer Service improperly discloses file information, aka 'Windows Modules Installer Service Information Disclosure Vulnerability'.
</code>
- [irsl/CVE-2020-0728](https://github.com/irsl/CVE-2020-0728)
### CVE-2020-0753 (2020-02-11)
<code>
@ -2298,7 +2236,6 @@ An elevation of privilege vulnerability exists in Windows Error Reporting (WER)
</code>
- [afang5472/CVE-2020-0753-and-CVE-2020-0754](https://github.com/afang5472/CVE-2020-0753-and-CVE-2020-0754)
- [VikasVarshney/CVE-2020-0753-and-CVE-2020-0754](https://github.com/VikasVarshney/CVE-2020-0753-and-CVE-2020-0754)
### CVE-2020-0787 (2020-03-12)
@ -2655,14 +2592,6 @@ An information disclosure vulnerability exists when attaching files to Outlook m
- [0neb1n/CVE-2020-1493](https://github.com/0neb1n/CVE-2020-1493)
### CVE-2020-1611 (2020-01-15)
<code>
A Local File Inclusion vulnerability in Juniper Networks Junos Space allows an attacker to view all files on the target when the device receives malicious HTTP packets. This issue affects: Juniper Networks Junos Space versions prior to 19.4R1.
</code>
- [Ibonok/CVE-2020-1611](https://github.com/Ibonok/CVE-2020-1611)
### CVE-2020-1764 (2020-03-26)
<code>
@ -2685,23 +2614,8 @@ Kylin has some restful apis which will concatenate SQLs with the user input stri
When using the Apache JServ Protocol (AJP), care must be taken when trusting incoming connections to Apache Tomcat. Tomcat treats AJP connections as having higher trust than, for example, a similar HTTP connection. If such connections are available to an attacker, they can be exploited in ways that may be surprising. In Apache Tomcat 9.0.0.M1 to 9.0.0.30, 8.5.0 to 8.5.50 and 7.0.0 to 7.0.99, Tomcat shipped with an AJP Connector enabled by default that listened on all configured IP addresses. It was expected (and recommended in the security guide) that this Connector would be disabled if not required. This vulnerability report identified a mechanism that allowed: - returning arbitrary files from anywhere in the web application - processing any file in the web application as a JSP Further, if the web application allowed file upload and stored those files within the web application (or the attacker was able to control the content of the web application by some other means) then this, along with the ability to process a file as a JSP, made remote code execution possible. It is important to note that mitigation is only required if an AJP port is accessible to untrusted users. Users wishing to take a defence-in-depth approach and block the vector that permits returning arbitrary files and execution as JSP may upgrade to Apache Tomcat 9.0.31, 8.5.51 or 7.0.100 or later. A number of changes were made to the default AJP Connector configuration in 9.0.31 to harden the default configuration. It is likely that users upgrading to 9.0.31, 8.5.51 or 7.0.100 or later will need to make small changes to their configurations.
</code>
- [0nise/CVE-2020-1938](https://github.com/0nise/CVE-2020-1938)
- [xindongzhuaizhuai/CVE-2020-1938](https://github.com/xindongzhuaizhuai/CVE-2020-1938)
- [nibiwodong/CNVD-2020-10487-Tomcat-ajp-POC](https://github.com/nibiwodong/CNVD-2020-10487-Tomcat-ajp-POC)
- [bkfish/CNVD-2020-10487-Tomcat-Ajp-lfi-Scanner](https://github.com/bkfish/CNVD-2020-10487-Tomcat-Ajp-lfi-Scanner)
- [laolisafe/CVE-2020-1938](https://github.com/laolisafe/CVE-2020-1938)
- [DaemonShao/CVE-2020-1938](https://github.com/DaemonShao/CVE-2020-1938)
- [sv3nbeast/CVE-2020-1938-Tomact-file_include-file_read](https://github.com/sv3nbeast/CVE-2020-1938-Tomact-file_include-file_read)
- [fairyming/CVE-2020-1938](https://github.com/fairyming/CVE-2020-1938)
- [dacade/CVE-2020-1938](https://github.com/dacade/CVE-2020-1938)
- [woaiqiukui/CVE-2020-1938TomcatAjpScanner](https://github.com/woaiqiukui/CVE-2020-1938TomcatAjpScanner)
- [fatal0/tomcat-cve-2020-1938-check](https://github.com/fatal0/tomcat-cve-2020-1938-check)
- [ze0r/GhostCat-LFI-exp](https://github.com/ze0r/GhostCat-LFI-exp)
- [delsadan/CNVD-2020-10487-Bulk-verification](https://github.com/delsadan/CNVD-2020-10487-Bulk-verification)
- [00theway/Ghostcat-CNVD-2020-10487](https://github.com/00theway/Ghostcat-CNVD-2020-10487)
- [shaunmclernon/ghostcat-verification](https://github.com/shaunmclernon/ghostcat-verification)
- [Zaziki1337/Ghostcat-CVE-2020-1938](https://github.com/Zaziki1337/Ghostcat-CVE-2020-1938)
- [w4fz5uck5/CVE-2020-1938-Clean-Version](https://github.com/w4fz5uck5/CVE-2020-1938-Clean-Version)
- [Just1ceP4rtn3r/CVE-2020-1938-Tool](https://github.com/Just1ceP4rtn3r/CVE-2020-1938-Tool)
- [doggycheng/CNVD-2020-10487](https://github.com/doggycheng/CNVD-2020-10487)
- [I-Runtime-Error/CVE-2020-1938](https://github.com/I-Runtime-Error/CVE-2020-1938)
@ -2794,7 +2708,6 @@ Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware
</code>
- [0xn0ne/weblogicScanner](https://github.com/0xn0ne/weblogicScanner)
- [jas502n/CVE-2020-2551](https://github.com/jas502n/CVE-2020-2551)
- [hktalent/CVE-2020-2551](https://github.com/hktalent/CVE-2020-2551)
- [0nise/CVE-2020-2551](https://github.com/0nise/CVE-2020-2551)
- [Y4er/CVE-2020-2551](https://github.com/Y4er/CVE-2020-2551)
@ -2808,21 +2721,12 @@ Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware
Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Caching,CacheStore,Invocation). Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3 to compromise Oracle Coherence. Successful attacks of this vulnerability can result in takeover of Oracle Coherence. CVSS 3.0 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).
</code>
- [Hu3sky/CVE-2020-2555](https://github.com/Hu3sky/CVE-2020-2555)
- [wsfengfan/CVE-2020-2555](https://github.com/wsfengfan/CVE-2020-2555)
- [0nise/CVE-2020-2555](https://github.com/0nise/CVE-2020-2555)
- [Y4er/CVE-2020-2555](https://github.com/Y4er/CVE-2020-2555)
- [Maskhe/cve-2020-2555](https://github.com/Maskhe/cve-2020-2555)
- [Uvemode/CVE-2020-2555](https://github.com/Uvemode/CVE-2020-2555)
### CVE-2020-2655 (2020-01-15)
<code>
Vulnerability in the Java SE product of Oracle Java SE (component: JSSE). Supported versions that are affected are Java SE: 11.0.5 and 13.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Java SE. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java SE accessible data as well as unauthorized read access to a subset of Java SE accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.0 Base Score 4.8 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N).
</code>
- [RUB-NDS/CVE-2020-2655-DemoServer](https://github.com/RUB-NDS/CVE-2020-2655-DemoServer)
### CVE-2020-2883 (2020-04-15)
<code>
@ -2921,14 +2825,6 @@ Adobe Genuine Integrity Service versions Version 6.4 and earlier have an insecur
- [hessandrew/CVE-2020-3766_APSB20-12](https://github.com/hessandrew/CVE-2020-3766_APSB20-12)
### CVE-2020-3833 (2020-02-27)
<code>
An inconsistent user interface issue was addressed with improved state management. This issue is fixed in Safari 13.0.5. Visiting a malicious website may lead to address bar spoofing.
</code>
- [c0d3G33k/Safari-Address-Bar-Spoof-CVE-2020-3833-](https://github.com/c0d3G33k/Safari-Address-Bar-Spoof-CVE-2020-3833-)
### CVE-2020-3952 (2020-04-10)
<code>
@ -2998,14 +2894,6 @@ IBM DataPower Gateway V10 and V2018 could allow a local attacker with administra
- [copethomas/datapower-redis-rce-exploit](https://github.com/copethomas/datapower-redis-rce-exploit)
### CVE-2020-5236 (2020-02-03)
<code>
Waitress version 1.4.2 allows a DOS attack When waitress receives a header that contains invalid characters. When a header like &quot;Bad-header: xxxxxxxxxxxxxxx\x10&quot; is received, it will cause the regular expression engine to catastrophically backtrack causing the process to use 100% CPU time and blocking any other interactions. This allows an attacker to send a single request with an invalid header and take the service offline. This issue was introduced in version 1.4.2 when the regular expression was updated to attempt to match the behaviour required by errata associated with RFC7230. The regular expression that is used to validate incoming headers has been updated in version 1.4.3, it is recommended that people upgrade to the new version of Waitress as soon as possible.
</code>
- [motikan2010/CVE-2020-5236](https://github.com/motikan2010/CVE-2020-5236)
### CVE-2020-5248 (2020-05-12)
<code>
@ -3049,14 +2937,6 @@ In ActionView before versions 6.0.2.2 and 5.2.4.2, there is a possible XSS vulne
- [GUI/legacy-rails-CVE-2020-5267-patch](https://github.com/GUI/legacy-rails-CVE-2020-5267-patch)
### CVE-2020-5398 (2020-01-16)
<code>
In Spring Framework, versions 5.2.x prior to 5.2.3, versions 5.1.x prior to 5.1.13, and versions 5.0.x prior to 5.0.16, an application is vulnerable to a reflected file download (RFD) attack when it sets a &quot;Content-Disposition&quot; header in the response where the filename attribute is derived from user supplied input.
</code>
- [motikan2010/CVE-2020-5398](https://github.com/motikan2010/CVE-2020-5398)
### CVE-2020-5410 (2020-06-02)
<code>
@ -3082,7 +2962,6 @@ In Spring Framework versions 5.2.0 - 5.2.8, 5.1.0 - 5.1.17, 5.0.0 - 5.0.18, 4.3.
PHPGurukul Car Rental Project v1.0 allows Remote Code Execution via an executable file in an upload of a new profile image.
</code>
- [FULLSHADE/CVE-2020-5509](https://github.com/FULLSHADE/CVE-2020-5509)
- [5l1v3r1/CVE-2020-5509](https://github.com/5l1v3r1/CVE-2020-5509)
### CVE-2020-5837 (2020-05-11)
@ -3299,23 +3178,12 @@ A potential security vulnerability has been identified in HPE Systems Insight Ma
- [alexfrancow/CVE-2020-7200](https://github.com/alexfrancow/CVE-2020-7200)
### CVE-2020-7246 (2020-01-21)
<code>
A remote code execution (RCE) vulnerability exists in qdPM 9.1 and earlier. An attacker can upload a malicious PHP code file via the profile photo functionality, by leveraging a path traversal vulnerability in the users['photop_preview'] delete photo feature, allowing bypass of .htaccess protection. NOTE: this issue exists because of an incomplete fix for CVE-2015-3884.
</code>
- [lnxcrew/CVE-2020-7246](https://github.com/lnxcrew/CVE-2020-7246)
### CVE-2020-7247 (2020-01-29)
<code>
smtp_mailaddr in smtp_session.c in OpenSMTPD 6.6, as used in OpenBSD 6.6 and other products, allows remote attackers to execute arbitrary commands as root via a crafted SMTP session, as demonstrated by shell metacharacters in a MAIL FROM field. This affects the &quot;uncommented&quot; default configuration. The issue exists because of an incorrect return value upon failure of input validation.
</code>
- [FiroSolutions/cve-2020-7247-exploit](https://github.com/FiroSolutions/cve-2020-7247-exploit)
- [superzerosec/cve-2020-7247](https://github.com/superzerosec/cve-2020-7247)
- [r0lh/CVE-2020-7247](https://github.com/r0lh/CVE-2020-7247)
- [jopraveen/CVE-2020-7247](https://github.com/jopraveen/CVE-2020-7247)
- [QTranspose/CVE-2020-7247-exploit](https://github.com/QTranspose/CVE-2020-7247-exploit)
- [f4T1H21/CVE-2020-7247](https://github.com/f4T1H21/CVE-2020-7247)
@ -3358,9 +3226,7 @@ In FreeBSD 12.1-STABLE before r365010, 11.4-STABLE before r365011, 12.1-RELEASE
Django 1.11 before 1.11.28, 2.2 before 2.2.10, and 3.0 before 3.0.3 allows SQL Injection if untrusted data is used as a StringAgg delimiter (e.g., in Django applications that offer downloads of data as a series of rows with a user-specified column delimiter). By passing a suitably crafted delimiter to a contrib.postgres.aggregates.StringAgg instance, it was possible to break escaping and inject malicious SQL.
</code>
- [Saferman/CVE-2020-7471](https://github.com/Saferman/CVE-2020-7471)
- [secoba/DjVul_StringAgg](https://github.com/secoba/DjVul_StringAgg)
- [SNCKER/CVE-2020-7471](https://github.com/SNCKER/CVE-2020-7471)
- [Tempuss/CTF_CVE-2020-7471](https://github.com/Tempuss/CTF_CVE-2020-7471)
- [victomteng1997/cve-2020-7471-Time_Blind_SQLi-](https://github.com/victomteng1997/cve-2020-7471-Time_Blind_SQLi-)
- [huzaifakhan771/CVE-2020-7471-Django](https://github.com/huzaifakhan771/CVE-2020-7471-Django)
@ -3389,15 +3255,6 @@ Incorrect handling of Upgrade header with the value websocket leads in crashing
- [andsnw/sockjs-dos-py](https://github.com/andsnw/sockjs-dos-py)
### CVE-2020-7799 (2020-01-28)
<code>
An issue was discovered in FusionAuth before 1.11.0. An authenticated user, allowed to edit e-mail templates (Home -&gt; Settings -&gt; Email Templates) or themes (Home -&gt; Settings -&gt; Themes), can execute commands on the underlying operating system by abusing freemarker.template.utility.Execute in the Apache FreeMarker engine that processes custom templates.
</code>
- [Pikaqi/cve-2020-7799](https://github.com/Pikaqi/cve-2020-7799)
- [ianxtianxt/CVE-2020-7799](https://github.com/ianxtianxt/CVE-2020-7799)
### CVE-2020-7897
- [mooneee/cve-2020-7897](https://github.com/mooneee/cve-2020-7897)
@ -3432,14 +3289,6 @@ Deserialization of Untrusted Data in Liferay Portal prior to 7.2.1 CE GA2 allows
- [Udyz/CVE-2020-7961-Mass](https://github.com/Udyz/CVE-2020-7961-Mass)
- [ShutdownRepo/CVE-2020-7961](https://github.com/ShutdownRepo/CVE-2020-7961)
### CVE-2020-7980 (2020-01-25)
<code>
Intellian Aptus Web 1.24 allows remote attackers to execute arbitrary OS commands via the Q field within JSON data to the cgi-bin/libagent.cgi URI. NOTE: a valid sid cookie for a login to the intellian default account might be needed.
</code>
- [Xh4H/Satellian-CVE-2020-7980](https://github.com/Xh4H/Satellian-CVE-2020-7980)
### CVE-2020-8004 (2020-04-06)
<code>
@ -3448,14 +3297,6 @@ STMicroelectronics STM32F1 devices have Incorrect Access Control.
- [wuxx/CVE-2020-8004](https://github.com/wuxx/CVE-2020-8004)
### CVE-2020-8012 (2020-02-17)
<code>
CA Unified Infrastructure Management (Nimsoft/UIM) 9.20 and below contains a buffer overflow vulnerability in the robot (controller) component. A remote attacker can execute arbitrary code.
</code>
- [wetw0rk/Exploit-Development](https://github.com/wetw0rk/Exploit-Development)
### CVE-2020-8103 (2020-06-05)
<code>
@ -3701,21 +3542,12 @@ A SQL injection vulnerability in TestLink 1.9.20 allows attackers to execute arb
- [DXY0411/CVE-2020-8637](https://github.com/DXY0411/CVE-2020-8637)
### CVE-2020-8809 (2020-02-25)
<code>
Gurux GXDLMS Director prior to 8.5.1905.1301 downloads updates to add-ins and OBIS code over an unencrypted HTTP connection. A man-in-the-middle attacker can prompt the user to download updates by modifying the contents of gurux.fi/obis/files.xml and gurux.fi/updates/updates.xml. Then, the attacker can modify the contents of downloaded files. In the case of add-ins (if the user is using those), this will lead to code execution. In case of OBIS codes (which the user is always using as they are needed to communicate with the energy meters), this can lead to code execution when combined with CVE-2020-8810.
</code>
- [seqred-s-a/gxdlmsdirector-cve](https://github.com/seqred-s-a/gxdlmsdirector-cve)
### CVE-2020-8813 (2020-02-21)
<code>
graph_realtime.php in Cacti 1.2.8 allows remote attackers to execute arbitrary OS commands via shell metacharacters in a cookie, if a guest user has the graph real-time privilege.
</code>
- [mhaskar/CVE-2020-8813](https://github.com/mhaskar/CVE-2020-8813)
- [m4udSec/Cacti-CVE-2020-8813](https://github.com/m4udSec/Cacti-CVE-2020-8813)
- [hexcowboy/CVE-2020-8813](https://github.com/hexcowboy/CVE-2020-8813)
@ -3756,9 +3588,7 @@ In the Linux kernel 5.5.0 and newer, the bpf verifier (kernel/bpf/verifier.c) di
FasterXML jackson-databind 2.0.0 through 2.9.10.2 lacks certain xbean-reflect/JNDI blocking, as demonstrated by org.apache.xbean.propertyeditor.JndiConverter.
</code>
- [jas502n/jackson-CVE-2020-8840](https://github.com/jas502n/jackson-CVE-2020-8840)
- [Wfzsec/FastJson1.2.62-RCE](https://github.com/Wfzsec/FastJson1.2.62-RCE)
- [fairyming/CVE-2020-8840](https://github.com/fairyming/CVE-2020-8840)
- [0nise/CVE-2020-8840](https://github.com/0nise/CVE-2020-8840)
- [Blyth0He/CVE-2020-8840](https://github.com/Blyth0He/CVE-2020-8840)
- [Veraxy00/CVE-2020-8840](https://github.com/Veraxy00/CVE-2020-8840)
@ -3808,14 +3638,6 @@ In Epson iProjection v2.30, the driver file (EMP_NSAU.sys) allows local users to
- [Crystalware/CVE-2020-9014](https://github.com/Crystalware/CVE-2020-9014)
### CVE-2020-9038 (2020-02-17)
<code>
Joplin through 1.0.184 allows Arbitrary File Read via XSS.
</code>
- [JavierOlmedo/CVE-2020-9038](https://github.com/JavierOlmedo/CVE-2020-9038)
### CVE-2020-9047 (2020-06-26)
<code>
@ -3872,14 +3694,6 @@ IPTV Smarters WEB TV PLAYER through 2020-02-22 allows attackers to execute OS co
- [migueltarga/CVE-2020-9380](https://github.com/migueltarga/CVE-2020-9380)
### CVE-2020-9442 (2020-02-28)
<code>
OpenVPN Connect 3.1.0.361 on Windows has Insecure Permissions for %PROGRAMDATA%\OpenVPN Connect\drivers\tap\amd64\win10, which allows local users to gain privileges by copying a malicious drvstore.dll there.
</code>
- [hessandrew/CVE-2020-9442](https://github.com/hessandrew/CVE-2020-9442)
### CVE-2020-9460 (2020-04-14)
<code>
@ -3964,22 +3778,6 @@ XML-RPC request are vulnerable to unsafe deserialization and Cross-Site Scriptin
- [ambalabanov/CVE-2020-9496](https://github.com/ambalabanov/CVE-2020-9496)
- [s4dbrd/CVE-2020-9496](https://github.com/s4dbrd/CVE-2020-9496)
### CVE-2020-9547 (2020-03-01)
<code>
FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to com.ibatis.sqlmap.engine.transaction.jta.JtaTransactionConfig (aka ibatis-sqlmap).
</code>
- [fairyming/CVE-2020-9547](https://github.com/fairyming/CVE-2020-9547)
### CVE-2020-9548 (2020-03-01)
<code>
FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadgets and typing, related to br.com.anteros.dbcp.AnterosDBCPConfig (aka anteros-core).
</code>
- [fairyming/CVE-2020-9548](https://github.com/fairyming/CVE-2020-9548)
### CVE-2020-9758 (2020-03-09)
<code>
@ -6471,9 +6269,6 @@ The dashboard gadgets preference resource of the Atlassian gadgets plugin used i
- [f4rber/CVE-2020-36287](https://github.com/f4rber/CVE-2020-36287)
### CVE-2020-72381
- [jdordonezn/CVE-2020-72381](https://github.com/jdordonezn/CVE-2020-72381)
## 2019
### CVE-2019-0053 (2019-07-11)