mirror/PoC-in-GitHub
1
0
Fork 0
mirror of https://github.com/nomi-sec/PoC-in-GitHub.git synced 2025-01-15 20:32:21 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

Auto Update 2024/11/12 00:31:45

Browse source
This commit is contained in:
motikan2010-bot 2024-11-12 09:31:45 +09:00
parent e21bca4cce
commit a06f9de572
15 changed files with 100 additions and 48 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
2018/CVE-2018-6389.json
View file

@ -394,10 +394,10 @@
"description": "Improved DOS exploit for wordpress websites (CVE-2018-6389)",
"fork": false,
"created_at": "2018-03-04T14:25:09Z",
"updated_at": "2024-10-03T05:13:20Z",
"updated_at": "2024-11-11T23:43:02Z",
"pushed_at": "2020-10-01T11:51:46Z",
"stargazers_count": 112,
"watchers_count": 112,
"stargazers_count": 113,
"watchers_count": 113,
"has_discussions": false,
"forks_count": 61,
"allow_forking": true,
@ -406,7 +406,7 @@
"topics": [],
"visibility": "public",
"forks": 61,
"watchers": 112,
"watchers": 113,
"score": 0,
"subscribers_count": 13
},

8
2019/CVE-2019-11358.json
View file

File diff suppressed because one or more lines are too long

8
2020/CVE-2020-11022.json
View file

@ -14,10 +14,10 @@
"description": "Little thing put together quickly to demonstrate this CVE ",
"fork": false,
"created_at": "2021-10-16T01:10:33Z",
"updated_at": "2024-10-21T10:26:33Z",
"updated_at": "2024-11-12T00:13:48Z",
"pushed_at": "2022-09-11T22:06:40Z",
"stargazers_count": 27,
"watchers_count": 27,
"stargazers_count": 28,
"watchers_count": 28,
"has_discussions": false,
"forks_count": 3,
"allow_forking": true,
@ -26,7 +26,7 @@
"topics": [],
"visibility": "public",
"forks": 3,
"watchers": 27,
"watchers": 28,
"score": 0,
"subscribers_count": 1
},

4
2021/CVE-2021-30481.json
View file

@ -45,8 +45,8 @@
"description": "Results of my research I have done on CVE-2021-30481 and on wallhacks in the videogame Counter-Strike 2",
"fork": false,
"created_at": "2024-05-31T09:43:39Z",
"updated_at": "2024-10-30T11:50:18Z",
"pushed_at": "2024-10-30T11:50:14Z",
"updated_at": "2024-11-11T18:50:43Z",
"pushed_at": "2024-11-11T18:50:40Z",
"stargazers_count": 0,
"watchers_count": 0,
"has_discussions": false,

4
2022/CVE-2022-24693.json
View file

@ -14,8 +14,8 @@
"description": null,
"fork": false,
"created_at": "2022-02-09T18:28:00Z",
"updated_at": "2024-11-11T18:10:38Z",
"pushed_at": "2024-11-11T18:10:34Z",
"updated_at": "2024-11-11T19:16:53Z",
"pushed_at": "2024-11-11T19:16:49Z",
"stargazers_count": 3,
"watchers_count": 3,
"has_discussions": false,

8
2022/CVE-2022-38694.json
View file

@ -14,10 +14,10 @@
"description": "This is a one-time signature verification bypass. For persistent signature verification bypass, check https:\/\/github.com\/TomKing062\/CVE-2022-38691_38692",
"fork": false,
"created_at": "2023-06-10T08:31:26Z",
"updated_at": "2024-11-11T01:29:04Z",
"updated_at": "2024-11-11T18:40:06Z",
"pushed_at": "2024-08-01T15:09:15Z",
"stargazers_count": 288,
"watchers_count": 288,
"stargazers_count": 289,
"watchers_count": 289,
"has_discussions": true,
"forks_count": 40,
"allow_forking": true,
@ -29,7 +29,7 @@
],
"visibility": "public",
"forks": 40,
"watchers": 288,
"watchers": 289,
"score": 0,
"subscribers_count": 6
},

8
2023/CVE-2023-21768.json
View file

@ -14,10 +14,10 @@
"description": "LPE exploit for CVE-2023-21768",
"fork": false,
"created_at": "2023-03-07T23:00:27Z",
"updated_at": "2024-11-08T21:25:15Z",
"updated_at": "2024-11-11T19:40:46Z",
"pushed_at": "2023-07-10T16:35:49Z",
"stargazers_count": 479,
"watchers_count": 479,
"stargazers_count": 480,
"watchers_count": 480,
"has_discussions": false,
"forks_count": 163,
"allow_forking": true,
@ -26,7 +26,7 @@
"topics": [],
"visibility": "public",
"forks": 163,
"watchers": 479,
"watchers": 480,
"score": 0,
"subscribers_count": 10
},

4
2023/CVE-2023-22726.json
View file

@ -14,8 +14,8 @@
"description": "CVE-2023-22726",
"fork": false,
"created_at": "2024-05-29T10:38:30Z",
"updated_at": "2024-10-26T19:57:56Z",
"pushed_at": "2024-10-26T19:57:52Z",
"updated_at": "2024-11-11T19:30:31Z",
"pushed_at": "2024-11-11T19:30:28Z",
"stargazers_count": 0,
"watchers_count": 0,
"has_discussions": false,

8
2023/CVE-2023-38146.json
View file

@ -14,10 +14,10 @@
"description": "Proof-of-Concept for CVE-2023-38146 (\"ThemeBleed\")",
"fork": false,
"created_at": "2023-09-13T04:00:14Z",
"updated_at": "2024-10-28T10:11:21Z",
"updated_at": "2024-11-11T23:13:50Z",
"pushed_at": "2023-09-13T04:50:29Z",
"stargazers_count": 186,
"watchers_count": 186,
"stargazers_count": 187,
"watchers_count": 187,
"has_discussions": false,
"forks_count": 38,
"allow_forking": true,
@ -26,7 +26,7 @@
"topics": [],
"visibility": "public",
"forks": 38,
"watchers": 186,
"watchers": 187,
"score": 0,
"subscribers_count": 4
},

8
2024/CVE-2024-11016.json
View file

@ -14,10 +14,10 @@
"description": "CVE-2024-11016-Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')",
"fork": false,
"created_at": "2024-11-11T17:17:22Z",
"updated_at": "2024-11-11T17:41:26Z",
"updated_at": "2024-11-11T18:52:35Z",
"pushed_at": "2024-11-11T17:41:23Z",
"stargazers_count": 0,
"watchers_count": 0,
"stargazers_count": 1,
"watchers_count": 1,
"has_discussions": false,
"forks_count": 0,
"allow_forking": true,
@ -26,7 +26,7 @@
"topics": [],
"visibility": "public",
"forks": 0,
"watchers": 0,
"watchers": 1,
"score": 0,
"subscribers_count": 0
}

8
2024/CVE-2024-23334.json
View file

@ -296,10 +296,10 @@
"description": "Proof of concept of the parh traversal in python AioHTTP library =< 3.9.1",
"fork": false,
"created_at": "2024-11-09T13:59:28Z",
"updated_at": "2024-11-09T14:18:05Z",
"updated_at": "2024-11-11T22:51:10Z",
"pushed_at": "2024-11-09T14:18:02Z",
"stargazers_count": 0,
"watchers_count": 0,
"stargazers_count": 1,
"watchers_count": 1,
"has_discussions": false,
"forks_count": 0,
"allow_forking": true,
@ -308,7 +308,7 @@
"topics": [],
"visibility": "public",
"forks": 0,
"watchers": 0,
"watchers": 1,
"score": 0,
"subscribers_count": 1
}

8
2024/CVE-2024-30088.json
View file

@ -14,10 +14,10 @@
"description": null,
"fork": false,
"created_at": "2024-06-24T10:37:26Z",
"updated_at": "2024-11-11T07:58:51Z",
"updated_at": "2024-11-11T22:06:16Z",
"pushed_at": "2024-07-31T19:11:55Z",
"stargazers_count": 228,
"watchers_count": 228,
"stargazers_count": 229,
"watchers_count": 229,
"has_discussions": false,
"forks_count": 50,
"allow_forking": true,
@ -26,7 +26,7 @@
"topics": [],
"visibility": "public",
"forks": 50,
"watchers": 228,
"watchers": 229,
"score": 0,
"subscribers_count": 3
},

4
2024/CVE-2024-34351.json
View file

@ -81,13 +81,13 @@
"stargazers_count": 2,
"watchers_count": 2,
"has_discussions": false,
"forks_count": 0,
"forks_count": 1,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 0,
"forks": 1,
"watchers": 2,
"score": 0,
"subscribers_count": 1

33
2024/CVE-2024-47062.json Normal file
View file

@ -0,0 +1,33 @@
[
{
"id": 886019978,
"name": "CVE-2024-47062",
"full_name": "saisathvik1\/CVE-2024-47062",
"owner": {
"login": "saisathvik1",
"id": 51957422,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/51957422?v=4",
"html_url": "https:\/\/github.com\/saisathvik1",
"user_view_type": "public"
},
"html_url": "https:\/\/github.com\/saisathvik1\/CVE-2024-47062",
"description": "CVE-2024-47062 PoC",
"fork": false,
"created_at": "2024-11-10T01:10:06Z",
"updated_at": "2024-11-11T23:32:40Z",
"pushed_at": "2024-11-11T18:18:09Z",
"stargazers_count": 0,
"watchers_count": 0,
"has_discussions": false,
"forks_count": 0,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 0,
"watchers": 0,
"score": 0,
"subscribers_count": 0
}
]

27
README.md
View file

@ -6140,6 +6140,13 @@
- [vidura2/CVE-2024-46986](https://github.com/vidura2/CVE-2024-46986)
### CVE-2024-47062 (2024-09-20)
<code>Navidrome is an open source web-based music collection server and streamer. Navidrome automatically adds parameters in the URL to SQL queries. This can be exploited to access information by adding parameters like `password=...` in the URL (ORM Leak). Furthermore, the names of the parameters are not properly escaped, leading to SQL Injections. Finally, the username is used in a `LIKE` statement, allowing people to log in with `%` instead of their username. When adding parameters to the URL, they are automatically included in an SQL `LIKE` statement (depending on the parameter's name). This allows attackers to potentially retrieve arbitrary information. For example, attackers can use the following request to test whether some encrypted passwords start with `AAA`. This results in an SQL query like `password LIKE 'AAA%'`, allowing attackers to slowly brute-force passwords. When adding parameters to the URL, they are automatically added to an SQL query. The names of the parameters are not properly escaped. This behavior can be used to inject arbitrary SQL code (SQL Injection). These vulnerabilities can be used to leak information and dump the contents of the database and have been addressed in release version 0.53.0. Users are advised to upgrade. There are no known workarounds for this vulnerability.
</code>
- [saisathvik1/CVE-2024-47062](https://github.com/saisathvik1/CVE-2024-47062)
### CVE-2024-47066 (2024-09-23)
<code>Lobe Chat is an open-source artificial intelligence chat framework. Prior to version 1.19.13, server-side request forgery protection implemented in `src/app/api/proxy/route.ts` does not consider redirect and could be bypassed when attacker provides an external malicious URL which redirects to internal resources like a private network or loopback address. Version 1.19.13 contains an improved fix for the issue.
@ -6212,7 +6219,11 @@
- [ajrielrm/CVE-2024-48217](https://github.com/ajrielrm/CVE-2024-48217)
### CVE-2024-48322
### CVE-2024-48322 (2024-11-11)
<code>UsersController.php in Run.codes 1.5.2 and older has a reset password race condition vulnerability.
</code>
- [trqt/CVE-2024-48322](https://github.com/trqt/CVE-2024-48322)
### CVE-2024-48325 (2024-11-06)
@ -6445,7 +6456,11 @@
- [hatvix1/CVE-2024-50526-Private-POC](https://github.com/hatvix1/CVE-2024-50526-Private-POC)
### CVE-2024-51026
### CVE-2024-51026 (2024-11-11)
<code>The NetAdmin IAM system (version 4.0.30319) has a Cross Site Scripting (XSS) vulnerability in the /BalloonSave.ashx endpoint, where it is possible to inject a malicious payload into the Content= field.
</code>
- [BrotherOfJhonny/CVE-2024-51026_Overview](https://github.com/BrotherOfJhonny/CVE-2024-51026_Overview)
### CVE-2024-51030 (2024-11-08)
@ -6476,7 +6491,11 @@
- [JAckLosingHeart/CVE-2024-51132-POC](https://github.com/JAckLosingHeart/CVE-2024-51132-POC)
### CVE-2024-51135
### CVE-2024-51135 (2024-11-11)
<code>An XML External Entity (XXE) vulnerability in the component DocumentBuilderFactory of powertac-server v1.9.0 allows attackers to access sensitive information or execute arbitrary code via supplying a crafted request containing malicious XML entities.
</code>
- [JAckLosingHeart/CVE-2024-51135](https://github.com/JAckLosingHeart/CVE-2024-51135)
### CVE-2024-51136 (2024-11-04)
@ -13646,7 +13665,7 @@
### CVE-2023-46344 (2024-02-02)
<code>A vulnerability in Solar-Log Base 15 Firmware 6.0.1 Build 161, and possibly other Solar-Log Base products, allows an attacker to escalate their privileges by exploiting a stored cross-site scripting (XSS) vulnerability in the switch group function under /#ilang=DE&amp;b=c_smartenergy_swgroups in the web portal. The vulnerability can be exploited to gain the rights of an installer or PM, which can then be used to gain administrative access to the web portal and execute further attacks. NOTE: The vendor states that this vulnerability has been fixed in version 6.2.0-170.
<code>A vulnerability in Solar-Log Base 15 Firmware 6.0.1 Build 161, and possibly other Solar-Log Base products, allows an attacker to escalate their privileges by exploiting a stored cross-site scripting (XSS) vulnerability in the switch group function under /#ilang=DE&amp;b=c_smartenergy_swgroups in the web portal. The vulnerability can be exploited to gain the rights of an installer or PM, which can then be used to gain administrative access to the web portal and execute further attacks. NOTE: The vendor states that this vulnerability has been fixed with 3.0.0-60 11.10.2013 for SL 200, 500, 1000 / not existing for SL 250, 300, 1200, 2000, SL 50 Gateway, SL Base.
</code>
- [vinnie1717/CVE-2023-46344](https://github.com/vinnie1717/CVE-2023-46344)