mirror/PoC-in-GitHub
1
0
Fork 0
mirror of https://github.com/nomi-sec/PoC-in-GitHub.git synced 2025-01-15 20:32:21 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

Auto Update 2023/06/29 18:35:29

Browse source
This commit is contained in:
motikan2010-bot 2023-06-30 03:35:29 +09:00
parent 909d709eb9
commit e1470a4566
42 changed files with 238 additions and 233 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
2008/CVE-2008-6806.json
View file

@ -27,6 +27,6 @@
"forks": 0,
"watchers": 0,
"score": 0,
"subscribers_count": 3
"subscribers_count": 1
}
]

2
2010/CVE-2010-1411.json
View file

@ -27,6 +27,6 @@
"forks": 0,
"watchers": 0,
"score": 0,
"subscribers_count": 2
"subscribers_count": 3
}
]

2
2010/CVE-2010-4804.json
View file

@ -27,6 +27,6 @@
"forks": 6,
"watchers": 6,
"score": 0,
"subscribers_count": 1
"subscribers_count": 2
}
]

2
2014/CVE-2014-0160.json
View file

@ -207,7 +207,7 @@
"forks": 0,
"watchers": 0,
"score": 0,
"subscribers_count": 2
"subscribers_count": 3
},
{
"id": 18566360,

92
2015/CVE-2015-0235.json
View file

@ -119,36 +119,6 @@
"score": 0,
"subscribers_count": 2
},
{
"id": 29950345,
"name": "CVE-2015-0235_GHOST",
"full_name": "mholzinger\/CVE-2015-0235_GHOST",
"owner": {
"login": "mholzinger",
"id": 235958,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/235958?v=4",
"html_url": "https:\/\/github.com\/mholzinger"
},
"html_url": "https:\/\/github.com\/mholzinger\/CVE-2015-0235_GHOST",
"description": null,
"fork": false,
"created_at": "2015-01-28T04:22:05Z",
"updated_at": "2016-02-26T05:46:40Z",
"pushed_at": "2015-01-28T05:26:34Z",
"stargazers_count": 3,
"watchers_count": 3,
"has_discussions": false,
"forks_count": 1,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 1,
"watchers": 3,
"score": 0,
"subscribers_count": 2
},
{
"id": 29988916,
"name": "ansible-CVE-2015-0235-GHOST",
@ -209,36 +179,6 @@
"score": 0,
"subscribers_count": 1
},
{
"id": 30004399,
"name": "cfengine-CVE_2015_0235",
"full_name": "nickanderson\/cfengine-CVE_2015_0235",
"owner": {
"login": "nickanderson",
"id": 202896,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/202896?v=4",
"html_url": "https:\/\/github.com\/nickanderson"
},
"html_url": "https:\/\/github.com\/nickanderson\/cfengine-CVE_2015_0235",
"description": "gethostbyname*() buffer overflow exploit in glibc - CVE-2015-0235 https:\/\/community.qualys.com\/blogs\/laws-of-vulnerabilities\/2015\/01\/27\/the-ghost-vulnerability",
"fork": false,
"created_at": "2015-01-29T04:58:54Z",
"updated_at": "2016-02-13T01:41:47Z",
"pushed_at": "2015-01-29T21:23:45Z",
"stargazers_count": 1,
"watchers_count": 1,
"has_discussions": false,
"forks_count": 0,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 0,
"watchers": 1,
"score": 0,
"subscribers_count": 1
},
{
"id": 30008427,
"name": "cookbook-update-glibc",
@ -299,36 +239,6 @@
"score": 0,
"subscribers_count": 2
},
{
"id": 30066365,
"name": "CVE-2015-0235",
"full_name": "tobyzxj\/CVE-2015-0235",
"owner": {
"login": "tobyzxj",
"id": 4661855,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/4661855?v=4",
"html_url": "https:\/\/github.com\/tobyzxj"
},
"html_url": "https:\/\/github.com\/tobyzxj\/CVE-2015-0235",
"description": "glibc gethostbyname bug",
"fork": false,
"created_at": "2015-01-30T09:58:09Z",
"updated_at": "2020-10-17T20:24:46Z",
"pushed_at": "2015-01-30T10:02:28Z",
"stargazers_count": 1,
"watchers_count": 1,
"has_discussions": false,
"forks_count": 1,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 1,
"watchers": 1,
"score": 0,
"subscribers_count": 2
},
{
"id": 30183649,
"name": "CVE-2015-0235-workaround",
@ -357,7 +267,7 @@
"forks": 4,
"watchers": 7,
"score": 0,
"subscribers_count": 1
"subscribers_count": 2
},
{
"id": 33016863,

10
2015/CVE-2015-1701.json
View file

@ -13,10 +13,10 @@
"description": "Win32k LPE vulnerability used in APT attack",
"fork": false,
"created_at": "2015-05-12T18:04:48Z",
"updated_at": "2023-06-26T01:29:51Z",
"updated_at": "2023-06-29T16:47:51Z",
"pushed_at": "2017-12-18T14:11:29Z",
"stargazers_count": 285,
"watchers_count": 285,
"stargazers_count": 286,
"watchers_count": 286,
"has_discussions": false,
"forks_count": 187,
"allow_forking": true,
@ -28,9 +28,9 @@
],
"visibility": "public",
"forks": 187,
"watchers": 285,
"watchers": 286,
"score": 0,
"subscribers_count": 33
"subscribers_count": 34
},
{
"id": 472212415,

2
2015/CVE-2015-7547.json
View file

@ -27,7 +27,7 @@
"forks": 176,
"watchers": 547,
"score": 0,
"subscribers_count": 63
"subscribers_count": 64
},
{
"id": 51882502,

8
2017/CVE-2017-12617.json
View file

@ -13,10 +13,10 @@
"description": "Apache Tomcat < 9.0.1 (Beta) \/ < 8.5.23 \/ < 8.0.47 \/ < 7.0.8 - JSP Upload Bypass \/ Remote Code Execution ",
"fork": false,
"created_at": "2017-10-05T23:41:52Z",
"updated_at": "2023-06-29T07:43:13Z",
"updated_at": "2023-06-29T15:26:02Z",
"pushed_at": "2017-10-11T07:43:50Z",
"stargazers_count": 376,
"watchers_count": 376,
"stargazers_count": 375,
"watchers_count": 375,
"has_discussions": false,
"forks_count": 140,
"allow_forking": true,
@ -25,7 +25,7 @@
"topics": [],
"visibility": "public",
"forks": 140,
"watchers": 376,
"watchers": 375,
"score": 0,
"subscribers_count": 14
},

2
2017/CVE-2017-15303.json
View file

@ -32,6 +32,6 @@
"forks": 59,
"watchers": 108,
"score": 0,
"subscribers_count": 10
"subscribers_count": 11
}
]

2
2017/CVE-2017-3730.json
View file

@ -27,6 +27,6 @@
"forks": 6,
"watchers": 11,
"score": 0,
"subscribers_count": 3
"subscribers_count": 4
}
]

10
2017/CVE-2017-5638.json
View file

@ -147,7 +147,7 @@
"forks": 25,
"watchers": 39,
"score": 0,
"subscribers_count": 6
"subscribers_count": 7
},
{
"id": 84581800,
@ -415,10 +415,10 @@
"description": "An exploit for Apache Struts CVE-2017-5638",
"fork": false,
"created_at": "2017-03-12T02:02:25Z",
"updated_at": "2023-06-03T12:04:37Z",
"updated_at": "2023-06-29T16:40:30Z",
"pushed_at": "2018-05-21T18:33:26Z",
"stargazers_count": 411,
"watchers_count": 411,
"stargazers_count": 412,
"watchers_count": 412,
"has_discussions": false,
"forks_count": 150,
"allow_forking": true,
@ -433,7 +433,7 @@
],
"visibility": "public",
"forks": 150,
"watchers": 411,
"watchers": 412,
"score": 0,
"subscribers_count": 21
},

2
2017/CVE-2017-5754.json
View file

@ -37,7 +37,7 @@
"forks": 93,
"watchers": 552,
"score": 0,
"subscribers_count": 55
"subscribers_count": 54
},
{
"id": 116319052,

2
2017/CVE-2017-9101.json
View file

@ -31,6 +31,6 @@
"forks": 5,
"watchers": 13,
"score": 0,
"subscribers_count": 2
"subscribers_count": 3
}
]

2
2018/CVE-2018-25031.json
View file

@ -117,6 +117,6 @@
"forks": 1,
"watchers": 0,
"score": 0,
"subscribers_count": 0
"subscribers_count": 2
}
]

32
2019/CVE-2019-0708.json
View file

@ -1888,10 +1888,10 @@
"description": "Proof of concept for CVE-2019-0708",
"fork": false,
"created_at": "2019-05-29T16:53:54Z",
"updated_at": "2023-06-28T17:39:44Z",
"updated_at": "2023-06-29T17:34:06Z",
"pushed_at": "2021-12-02T12:00:46Z",
"stargazers_count": 1138,
"watchers_count": 1138,
"stargazers_count": 1139,
"watchers_count": 1139,
"has_discussions": false,
"forks_count": 354,
"allow_forking": true,
@ -1900,7 +1900,7 @@
"topics": [],
"visibility": "public",
"forks": 354,
"watchers": 1138,
"watchers": 1139,
"score": 0,
"subscribers_count": 69
},
@ -1978,10 +1978,10 @@
"description": "An Attempt to Port BlueKeep PoC from @Ekultek to actual exploits",
"fork": false,
"created_at": "2019-05-31T00:04:12Z",
"updated_at": "2023-06-03T15:07:17Z",
"updated_at": "2023-06-29T17:34:40Z",
"pushed_at": "2021-01-10T04:31:22Z",
"stargazers_count": 346,
"watchers_count": 346,
"stargazers_count": 347,
"watchers_count": 347,
"has_discussions": false,
"forks_count": 132,
"allow_forking": true,
@ -1990,7 +1990,7 @@
"topics": [],
"visibility": "public",
"forks": 132,
"watchers": 346,
"watchers": 347,
"score": 0,
"subscribers_count": 30
},
@ -2464,10 +2464,10 @@
"description": "Public work for CVE-2019-0708",
"fork": false,
"created_at": "2019-07-23T03:15:53Z",
"updated_at": "2023-06-28T20:56:33Z",
"updated_at": "2023-06-29T17:44:38Z",
"pushed_at": "2019-11-19T02:43:38Z",
"stargazers_count": 292,
"watchers_count": 292,
"stargazers_count": 293,
"watchers_count": 293,
"has_discussions": false,
"forks_count": 97,
"allow_forking": true,
@ -2476,7 +2476,7 @@
"topics": [],
"visibility": "public",
"forks": 97,
"watchers": 292,
"watchers": 293,
"score": 0,
"subscribers_count": 21
},
@ -3154,10 +3154,10 @@
"description": "CVE-2019-0708 (BlueKeep) proof of concept allowing pre-auth RCE on Windows7",
"fork": false,
"created_at": "2020-03-15T19:33:53Z",
"updated_at": "2023-06-14T07:31:38Z",
"updated_at": "2023-06-29T14:52:51Z",
"pushed_at": "2022-03-28T04:10:20Z",
"stargazers_count": 102,
"watchers_count": 102,
"stargazers_count": 103,
"watchers_count": 103,
"has_discussions": false,
"forks_count": 18,
"allow_forking": true,
@ -3166,7 +3166,7 @@
"topics": [],
"visibility": "public",
"forks": 18,
"watchers": 102,
"watchers": 103,
"score": 0,
"subscribers_count": 3
},

30
2019/CVE-2019-11932.json
View file

@ -125,6 +125,36 @@
"score": 0,
"subscribers_count": 1
},
{
"id": 213187543,
"name": "CVE-2019-11932",
"full_name": "infiniteLoopers\/CVE-2019-11932",
"owner": {
"login": "infiniteLoopers",
"id": 27885817,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/27885817?v=4",
"html_url": "https:\/\/github.com\/infiniteLoopers"
},
"html_url": "https:\/\/github.com\/infiniteLoopers\/CVE-2019-11932",
"description": null,
"fork": false,
"created_at": "2019-10-06T14:54:35Z",
"updated_at": "2022-06-01T18:02:34Z",
"pushed_at": "2019-10-06T15:34:22Z",
"stargazers_count": 4,
"watchers_count": 4,
"has_discussions": false,
"forks_count": 3,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 3,
"watchers": 4,
"score": 0,
"subscribers_count": 4
},
{
"id": 214405727,
"name": "CVE-2019-11932",

8
2019/CVE-2019-17564.json
View file

@ -133,10 +133,10 @@
"description": "Basic code for creating the Alibaba FastJson + Spring gadget chain, as used to exploit Apache Dubbo in CVE-2019-17564 - more information available at https:\/\/www.checkmarx.com\/blog\/apache-dubbo-unauthenticated-remote-code-execution-vulnerability",
"fork": false,
"created_at": "2020-02-20T08:28:55Z",
"updated_at": "2023-05-09T01:36:44Z",
"updated_at": "2023-06-29T16:52:59Z",
"pushed_at": "2022-12-10T05:45:32Z",
"stargazers_count": 16,
"watchers_count": 16,
"stargazers_count": 15,
"watchers_count": 15,
"has_discussions": false,
"forks_count": 2,
"allow_forking": true,
@ -150,7 +150,7 @@
],
"visibility": "public",
"forks": 2,
"watchers": 16,
"watchers": 15,
"score": 0,
"subscribers_count": 2
},

8
2019/CVE-2019-8942.json
View file

@ -13,10 +13,10 @@
"description": "A simple PoC for WordPress RCE (author priviledge), refer to CVE-2019-8942 and CVE-2019-8943.",
"fork": false,
"created_at": "2019-02-25T06:38:15Z",
"updated_at": "2023-06-06T16:32:28Z",
"updated_at": "2023-06-29T16:43:38Z",
"pushed_at": "2019-03-18T01:20:52Z",
"stargazers_count": 68,
"watchers_count": 68,
"stargazers_count": 69,
"watchers_count": 69,
"has_discussions": false,
"forks_count": 22,
"allow_forking": true,
@ -28,7 +28,7 @@
],
"visibility": "public",
"forks": 22,
"watchers": 68,
"watchers": 69,
"score": 0,
"subscribers_count": 2
},

8
2019/CVE-2019-8978.json
View file

@ -2,14 +2,14 @@
{
"id": 186045784,
"name": "CVE-2019-8978",
"full_name": "JoshuaMulliken\/CVE-2019-8978",
"full_name": "SecKatie\/CVE-2019-8978",
"owner": {
"login": "JoshuaMulliken",
"login": "SecKatie",
"id": 36283247,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/36283247?v=4",
"html_url": "https:\/\/github.com\/JoshuaMulliken"
"html_url": "https:\/\/github.com\/SecKatie"
},
"html_url": "https:\/\/github.com\/JoshuaMulliken\/CVE-2019-8978",
"html_url": "https:\/\/github.com\/SecKatie\/CVE-2019-8978",
"description": "Banner Web Tailor and Banner Enterprise Identity Services Vulnerability Disclosure",
"fork": false,
"created_at": "2019-05-10T19:46:58Z",

8
2020/CVE-2020-1472.json
View file

@ -260,10 +260,10 @@
"description": "CVE-2020-1472复现流程",
"fork": false,
"created_at": "2020-09-15T12:11:49Z",
"updated_at": "2021-04-18T11:22:10Z",
"updated_at": "2023-06-29T17:25:25Z",
"pushed_at": "2021-04-18T11:22:07Z",
"stargazers_count": 3,
"watchers_count": 3,
"stargazers_count": 2,
"watchers_count": 2,
"has_discussions": false,
"forks_count": 1,
"allow_forking": true,
@ -272,7 +272,7 @@
"topics": [],
"visibility": "public",
"forks": 1,
"watchers": 3,
"watchers": 2,
"score": 0,
"subscribers_count": 1
},

8
2020/CVE-2020-2034.json
View file

@ -13,10 +13,10 @@
"description": "Determine the Version Running on the Palo Alto Network Firewall for the Global Protect Portal",
"fork": false,
"created_at": "2020-08-08T14:19:44Z",
"updated_at": "2023-01-15T00:22:18Z",
"updated_at": "2023-06-29T14:10:27Z",
"pushed_at": "2020-08-14T09:24:34Z",
"stargazers_count": 11,
"watchers_count": 11,
"stargazers_count": 12,
"watchers_count": 12,
"has_discussions": false,
"forks_count": 7,
"allow_forking": true,
@ -25,7 +25,7 @@
"topics": [],
"visibility": "public",
"forks": 7,
"watchers": 11,
"watchers": 12,
"score": 0,
"subscribers_count": 1
}

8
2021/CVE-2021-20038.json
View file

@ -13,10 +13,10 @@
"description": "SonicWall SMA-100 Unauth RCE Exploit (CVE-2021-20038)",
"fork": false,
"created_at": "2022-01-11T02:25:25Z",
"updated_at": "2023-05-19T11:35:38Z",
"updated_at": "2023-06-29T14:47:53Z",
"pushed_at": "2022-01-11T11:22:06Z",
"stargazers_count": 88,
"watchers_count": 88,
"stargazers_count": 89,
"watchers_count": 89,
"has_discussions": false,
"forks_count": 24,
"allow_forking": true,
@ -29,7 +29,7 @@
],
"visibility": "public",
"forks": 24,
"watchers": 88,
"watchers": 89,
"score": 0,
"subscribers_count": 4
},

8
2021/CVE-2021-21972.json
View file

@ -851,10 +851,10 @@
"description": "一款针对Vcenter的综合利用工具包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972\/31656以及log4j提供一键上传webshell命令执行或者上传公钥使用SSH免密连接",
"fork": false,
"created_at": "2022-10-04T03:39:27Z",
"updated_at": "2023-06-29T08:52:07Z",
"updated_at": "2023-06-29T15:08:15Z",
"pushed_at": "2023-05-14T12:08:39Z",
"stargazers_count": 952,
"watchers_count": 952,
"stargazers_count": 953,
"watchers_count": 953,
"has_discussions": false,
"forks_count": 121,
"allow_forking": true,
@ -870,7 +870,7 @@
],
"visibility": "public",
"forks": 121,
"watchers": 952,
"watchers": 953,
"score": 0,
"subscribers_count": 9
}

6
2021/CVE-2021-27928.json
View file

@ -14,11 +14,11 @@
"fork": false,
"created_at": "2021-04-15T06:40:49Z",
"updated_at": "2023-05-13T14:01:02Z",
"pushed_at": "2021-12-08T03:06:43Z",
"pushed_at": "2023-06-29T15:57:12Z",
"stargazers_count": 54,
"watchers_count": 54,
"has_discussions": false,
"forks_count": 15,
"forks_count": 16,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
@ -28,7 +28,7 @@
"mariadb"
],
"visibility": "public",
"forks": 15,
"forks": 16,
"watchers": 54,
"score": 0,
"subscribers_count": 1

4
2021/CVE-2021-3156.json
View file

@ -899,13 +899,13 @@
"stargazers_count": 46,
"watchers_count": 46,
"has_discussions": false,
"forks_count": 16,
"forks_count": 17,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 16,
"forks": 17,
"watchers": 46,
"score": 0,
"subscribers_count": 1

8
2021/CVE-2021-40444.json
View file

@ -223,10 +223,10 @@
"description": "CVE-2021-40444 PoC",
"fork": false,
"created_at": "2021-09-10T16:55:53Z",
"updated_at": "2023-06-27T06:43:49Z",
"updated_at": "2023-06-29T14:44:49Z",
"pushed_at": "2021-12-25T18:31:02Z",
"stargazers_count": 1473,
"watchers_count": 1473,
"stargazers_count": 1474,
"watchers_count": 1474,
"has_discussions": false,
"forks_count": 488,
"allow_forking": true,
@ -235,7 +235,7 @@
"topics": [],
"visibility": "public",
"forks": 488,
"watchers": 1473,
"watchers": 1474,
"score": 0,
"subscribers_count": 28
},

30
2021/CVE-2021-42013.json
View file

@ -779,5 +779,35 @@
"watchers": 0,
"score": 0,
"subscribers_count": 1
},
{
"id": 660279030,
"name": "CVE-2021-42013",
"full_name": "Hamesawian\/CVE-2021-42013",
"owner": {
"login": "Hamesawian",
"id": 67901852,
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/67901852?v=4",
"html_url": "https:\/\/github.com\/Hamesawian"
},
"html_url": "https:\/\/github.com\/Hamesawian\/CVE-2021-42013",
"description": null,
"fork": false,
"created_at": "2023-06-29T16:32:44Z",
"updated_at": "2023-06-29T16:32:44Z",
"pushed_at": "2023-06-29T16:34:21Z",
"stargazers_count": 0,
"watchers_count": 0,
"has_discussions": false,
"forks_count": 1,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
"topics": [],
"visibility": "public",
"forks": 1,
"watchers": 0,
"score": 0,
"subscribers_count": 0
}
]

2
2021/CVE-2021-44228.json
View file

@ -857,7 +857,7 @@
"description": "🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks",
"fork": false,
"created_at": "2021-12-10T22:35:00Z",
"updated_at": "2023-06-25T01:12:50Z",
"updated_at": "2023-06-29T14:25:35Z",
"pushed_at": "2022-01-15T16:18:44Z",
"stargazers_count": 899,
"watchers_count": 899,

8
2022/CVE-2022-22954.json
View file

@ -766,10 +766,10 @@
"description": "一款针对Vcenter的综合利用工具包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972\/31656以及log4j提供一键上传webshell命令执行或者上传公钥使用SSH免密连接",
"fork": false,
"created_at": "2022-10-04T03:39:27Z",
"updated_at": "2023-06-29T08:52:07Z",
"updated_at": "2023-06-29T15:08:15Z",
"pushed_at": "2023-05-14T12:08:39Z",
"stargazers_count": 952,
"watchers_count": 952,
"stargazers_count": 953,
"watchers_count": 953,
"has_discussions": false,
"forks_count": 121,
"allow_forking": true,
@ -785,7 +785,7 @@
],
"visibility": "public",
"forks": 121,
"watchers": 952,
"watchers": 953,
"score": 0,
"subscribers_count": 10
},

8
2022/CVE-2022-26138.json
View file

@ -13,10 +13,10 @@
"description": "Atlassian Questions Hardcoded Password (CVE-2022-26138)",
"fork": false,
"created_at": "2022-07-21T09:28:06Z",
"updated_at": "2023-05-18T23:09:40Z",
"updated_at": "2023-06-29T16:55:29Z",
"pushed_at": "2022-07-26T12:06:14Z",
"stargazers_count": 34,
"watchers_count": 34,
"stargazers_count": 33,
"watchers_count": 33,
"has_discussions": false,
"forks_count": 10,
"allow_forking": true,
@ -31,7 +31,7 @@
],
"visibility": "public",
"forks": 10,
"watchers": 34,
"watchers": 33,
"score": 0,
"subscribers_count": 1
},

8
2022/CVE-2022-40684.json
View file

@ -13,10 +13,10 @@
"description": "A proof of concept exploit for CVE-2022-40684 affecting Fortinet FortiOS, FortiProxy, and FortiSwitchManager",
"fork": false,
"created_at": "2022-10-13T14:24:12Z",
"updated_at": "2023-06-22T17:01:34Z",
"updated_at": "2023-06-29T15:49:30Z",
"pushed_at": "2022-10-13T15:25:00Z",
"stargazers_count": 320,
"watchers_count": 320,
"stargazers_count": 321,
"watchers_count": 321,
"has_discussions": false,
"forks_count": 94,
"allow_forking": true,
@ -25,7 +25,7 @@
"topics": [],
"visibility": "public",
"forks": 94,
"watchers": 320,
"watchers": 321,
"score": 0,
"subscribers_count": 8
},

4
2022/CVE-2022-42889.json
View file

@ -55,7 +55,7 @@
"stargazers_count": 32,
"watchers_count": 32,
"has_discussions": true,
"forks_count": 16,
"forks_count": 15,
"allow_forking": true,
"is_template": false,
"web_commit_signoff_required": false,
@ -66,7 +66,7 @@
"poc"
],
"visibility": "public",
"forks": 16,
"forks": 15,
"watchers": 32,
"score": 0,
"subscribers_count": 3

16
2022/CVE-2022-44268.json
View file

@ -13,10 +13,10 @@
"description": "CVE-2022-44268 ImageMagick Arbitrary File Read - Payload Generator",
"fork": false,
"created_at": "2023-02-02T15:34:28Z",
"updated_at": "2023-06-28T13:51:33Z",
"updated_at": "2023-06-29T18:20:45Z",
"pushed_at": "2023-02-02T16:53:37Z",
"stargazers_count": 249,
"watchers_count": 249,
"stargazers_count": 250,
"watchers_count": 250,
"has_discussions": false,
"forks_count": 39,
"allow_forking": true,
@ -25,7 +25,7 @@
"topics": [],
"visibility": "public",
"forks": 39,
"watchers": 249,
"watchers": 250,
"score": 0,
"subscribers_count": 3
},
@ -196,10 +196,10 @@
"description": "A PoC for the CVE-2022-44268 - ImageMagick arbitrary file read",
"fork": false,
"created_at": "2023-02-05T18:42:27Z",
"updated_at": "2023-06-29T06:08:10Z",
"updated_at": "2023-06-29T16:41:01Z",
"pushed_at": "2023-02-05T19:35:03Z",
"stargazers_count": 167,
"watchers_count": 167,
"stargazers_count": 169,
"watchers_count": 169,
"has_discussions": false,
"forks_count": 23,
"allow_forking": true,
@ -208,7 +208,7 @@
"topics": [],
"visibility": "public",
"forks": 23,
"watchers": 167,
"watchers": 169,
"score": 0,
"subscribers_count": 1
},

8
2023/CVE-2023-0386.json
View file

@ -73,10 +73,10 @@
"description": "CVE-2023-0386在ubuntu22.04上的提权",
"fork": false,
"created_at": "2023-05-05T03:02:13Z",
"updated_at": "2023-06-29T02:32:56Z",
"updated_at": "2023-06-29T16:15:20Z",
"pushed_at": "2023-06-13T08:58:53Z",
"stargazers_count": 337,
"watchers_count": 337,
"stargazers_count": 338,
"watchers_count": 338,
"has_discussions": false,
"forks_count": 60,
"allow_forking": true,
@ -85,7 +85,7 @@
"topics": [],
"visibility": "public",
"forks": 60,
"watchers": 337,
"watchers": 338,
"score": 0,
"subscribers_count": 4
},

8
2023/CVE-2023-22432.json
View file

@ -13,10 +13,10 @@
"description": "PoC for CVE-2023-22432 (web2py)",
"fork": false,
"created_at": "2023-03-06T04:43:11Z",
"updated_at": "2023-03-10T08:26:19Z",
"updated_at": "2023-06-29T15:41:43Z",
"pushed_at": "2023-03-10T07:34:34Z",
"stargazers_count": 2,
"watchers_count": 2,
"stargazers_count": 3,
"watchers_count": 3,
"has_discussions": false,
"forks_count": 0,
"allow_forking": true,
@ -25,7 +25,7 @@
"topics": [],
"visibility": "public",
"forks": 0,
"watchers": 2,
"watchers": 3,
"score": 0,
"subscribers_count": 3
}

8
2023/CVE-2023-23638.json
View file

@ -43,10 +43,10 @@
"description": "Apache Dubbo (CVE-2023-23638)漏洞利用的工程化实践",
"fork": false,
"created_at": "2023-05-11T07:37:52Z",
"updated_at": "2023-06-29T09:51:13Z",
"updated_at": "2023-06-29T17:00:15Z",
"pushed_at": "2023-06-15T01:25:03Z",
"stargazers_count": 163,
"watchers_count": 163,
"stargazers_count": 164,
"watchers_count": 164,
"has_discussions": false,
"forks_count": 27,
"allow_forking": true,
@ -55,7 +55,7 @@
"topics": [],
"visibility": "public",
"forks": 27,
"watchers": 163,
"watchers": 164,
"score": 0,
"subscribers_count": 3
},

16
2023/CVE-2023-27997.json
View file

@ -103,10 +103,10 @@
"description": "Safely detect whether a FortiGate SSL VPN instance is vulnerable to CVE-2023-27997 based on response timing",
"fork": false,
"created_at": "2023-06-16T20:15:36Z",
"updated_at": "2023-06-28T05:43:21Z",
"updated_at": "2023-06-29T16:11:18Z",
"pushed_at": "2023-06-20T21:32:56Z",
"stargazers_count": 36,
"watchers_count": 36,
"stargazers_count": 37,
"watchers_count": 37,
"has_discussions": false,
"forks_count": 6,
"allow_forking": true,
@ -115,7 +115,7 @@
"topics": [],
"visibility": "public",
"forks": 6,
"watchers": 36,
"watchers": 37,
"score": 0,
"subscribers_count": 1
},
@ -133,10 +133,10 @@
"description": null,
"fork": false,
"created_at": "2023-06-22T14:16:44Z",
"updated_at": "2023-06-22T14:32:18Z",
"updated_at": "2023-06-29T14:00:05Z",
"pushed_at": "2023-06-23T01:39:02Z",
"stargazers_count": 0,
"watchers_count": 0,
"stargazers_count": 1,
"watchers_count": 1,
"has_discussions": false,
"forks_count": 2,
"allow_forking": true,
@ -145,7 +145,7 @@
"topics": [],
"visibility": "public",
"forks": 2,
"watchers": 0,
"watchers": 1,
"score": 0,
"subscribers_count": 1
},

8
2023/CVE-2023-2825.json
View file

@ -13,10 +13,10 @@
"description": "GitLab CVE-2023-2825 PoC. This PoC leverages a path traversal vulnerability to retrieve the \/etc\/passwd file from a system running GitLab 16.0.0.",
"fork": false,
"created_at": "2023-05-25T13:25:10Z",
"updated_at": "2023-06-19T06:24:20Z",
"updated_at": "2023-06-29T16:39:53Z",
"pushed_at": "2023-06-02T12:10:06Z",
"stargazers_count": 126,
"watchers_count": 126,
"stargazers_count": 127,
"watchers_count": 127,
"has_discussions": false,
"forks_count": 28,
"allow_forking": true,
@ -28,7 +28,7 @@
],
"visibility": "public",
"forks": 28,
"watchers": 126,
"watchers": 127,
"score": 0,
"subscribers_count": 4
},

8
2023/CVE-2023-32233.json
View file

@ -73,10 +73,10 @@
"description": "Use-After-Free in Netfilter nf_tables when processing batch requests CVE-2023-32233",
"fork": false,
"created_at": "2023-05-16T05:58:03Z",
"updated_at": "2023-06-28T04:46:40Z",
"updated_at": "2023-06-29T16:59:33Z",
"pushed_at": "2023-06-20T06:58:04Z",
"stargazers_count": 26,
"watchers_count": 26,
"stargazers_count": 27,
"watchers_count": 27,
"has_discussions": false,
"forks_count": 6,
"allow_forking": true,
@ -85,7 +85,7 @@
"topics": [],
"visibility": "public",
"forks": 6,
"watchers": 26,
"watchers": 27,
"score": 0,
"subscribers_count": 2
}

8
2023/CVE-2023-32784.json
View file

@ -13,10 +13,10 @@
"description": "Original PoC for CVE-2023-32784",
"fork": false,
"created_at": "2023-05-01T17:08:55Z",
"updated_at": "2023-06-29T13:36:39Z",
"updated_at": "2023-06-29T14:42:53Z",
"pushed_at": "2023-06-03T23:23:11Z",
"stargazers_count": 481,
"watchers_count": 481,
"stargazers_count": 482,
"watchers_count": 482,
"has_discussions": false,
"forks_count": 41,
"allow_forking": true,
@ -28,7 +28,7 @@
],
"visibility": "public",
"forks": 41,
"watchers": 481,
"watchers": 482,
"score": 0,
"subscribers_count": 10
},

8
2023/CVE-2023-33246.json
View file

@ -13,10 +13,10 @@
"description": null,
"fork": false,
"created_at": "2023-05-30T02:18:29Z",
"updated_at": "2023-06-25T08:43:28Z",
"updated_at": "2023-06-29T15:49:31Z",
"pushed_at": "2023-05-30T02:43:06Z",
"stargazers_count": 54,
"watchers_count": 54,
"stargazers_count": 55,
"watchers_count": 55,
"has_discussions": false,
"forks_count": 18,
"allow_forking": true,
@ -25,7 +25,7 @@
"topics": [],
"visibility": "public",
"forks": 18,
"watchers": 54,
"watchers": 55,
"score": 0,
"subscribers_count": 3
},

47
README.md
View file

@ -114,6 +114,13 @@
- [gonzxph/CVE-2023-0748](https://github.com/gonzxph/CVE-2023-0748)
### CVE-2023-0830 (2023-02-14)
<code>Es wurde eine kritische Schwachstelle in EasyNAS 1.1.0 entdeckt. Es betrifft die Funktion system der Datei /backup.pl. Durch Manipulation mit unbekannten Daten kann eine os command injection-Schwachstelle ausgenutzt werden. Der Angriff kann über das Netzwerk erfolgen. Der Exploit steht zur öffentlichen Verfügung. Als bestmögliche Massnahme wird das Einspielen eines Upgrades empfohlen.
</code>
- [xbz0n/CVE-2023-0830](https://github.com/xbz0n/CVE-2023-0830)
### CVE-2023-0860 (2023-02-16)
<code>Improper Restriction of Excessive Authentication Attempts in GitHub repository modoboa/modoboa-installer prior to 2.0.4.
@ -326,6 +333,13 @@
- [RandomRobbieBF/CVE-2023-2877](https://github.com/RandomRobbieBF/CVE-2023-2877)
### CVE-2023-2982 (2023-06-28)
<code>The WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 7.6.4. This is due to insufficient encryption on the user being supplied during a login validated through the plugin. This makes it possible for unauthenticated attackers to log in as any existing user on the site, such as an administrator, if they know the email address associated with that user. This was partially patched in version 7.6.4 and fully patched in version 7.6.5.
</code>
- [RandomRobbieBF/CVE-2023-2982](https://github.com/RandomRobbieBF/CVE-2023-2982)
### CVE-2023-2986 (2023-06-07)
<code>The Abandoned Cart Lite for WooCommerce plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 5.14.2. This is due to insufficient encryption on the user being supplied during the abandoned cart link decode through the plugin. This allows unauthenticated attackers to log in as users who have abandoned the cart, who are typically customers. Further security hardening was introduced in version 5.15.1 that ensures sites are no longer vulnerable through historical check-out links, and additional hardening was introduced in version 5.15.2 that ensured null key values wouldn't permit the authentication bypass.
@ -1814,11 +1828,19 @@
### CVE-2023-34584
- [fu2x2000/-CVE-2023-34584](https://github.com/fu2x2000/-CVE-2023-34584)
### CVE-2023-34598
### CVE-2023-34598 (2023-06-29)
<code>Gibbon v25.0.0 is vulnerable to a Local File Inclusion (LFI) where it's possible to include the content of several files present in the installation folder in the server's response.
</code>
- [maddsec/CVE-2023-34598](https://github.com/maddsec/CVE-2023-34598)
- [Szlein/CVE-2023-34598](https://github.com/Szlein/CVE-2023-34598)
### CVE-2023-34599
### CVE-2023-34599 (2023-06-29)
<code>Multiple Cross-Site Scripting (XSS) vulnerabilities have been identified in Gibbon v25.0.0, which enable attackers to execute arbitrary Javascript code.
</code>
- [maddsec/CVE-2023-34599](https://github.com/maddsec/CVE-2023-34599)
### CVE-2023-34600 (2023-06-20)
@ -1828,6 +1850,13 @@
- [costacoco/Adiscon](https://github.com/costacoco/Adiscon)
### CVE-2023-34761 (2023-06-28)
<code>An unauthenticated attacker within BLE proximity can remotely connect to a 7-Eleven LED Message Cup, Hello Cup 1.3.1 for Android, and bypass the application's client-side chat censor filter.
</code>
- [actuator/7-Eleven-Bluetooth-Smart-Cup-Jailbreak](https://github.com/actuator/7-Eleven-Bluetooth-Smart-Cup-Jailbreak)
### CVE-2023-34830 (2023-06-27)
<code>i-doit Open v24 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the timeout parameter on the login page.
@ -12767,6 +12796,7 @@
- [12345qwert123456/CVE-2021-42013](https://github.com/12345qwert123456/CVE-2021-42013)
- [cybfar/cve-2021-42013-httpd](https://github.com/cybfar/cve-2021-42013-httpd)
- [birdlinux/CVE-2021-42013](https://github.com/birdlinux/CVE-2021-42013)
- [Hamesawian/CVE-2021-42013](https://github.com/Hamesawian/CVE-2021-42013)
### CVE-2021-42056 (2022-06-24)
@ -20681,7 +20711,7 @@
<code>An improper authentication vulnerability can be exploited through a race condition that occurs in Ellucian Banner Web Tailor 8.8.3, 8.8.4, and 8.9 and Banner Enterprise Identity Services 8.3, 8.3.1, 8.3.2, and 8.4, in conjunction with SSO Manager. This vulnerability allows remote attackers to steal a victim's session (and cause a denial of service) by repeatedly requesting the initial Banner Web Tailor main page with the IDMSESSID cookie set to the victim's UDCID, which in the case tested is the institutional ID. During a login attempt by a victim, the attacker can leverage the race condition and will be issued the SESSID that was meant for this victim.
</code>
- [JoshuaMulliken/CVE-2019-8978](https://github.com/JoshuaMulliken/CVE-2019-8978)
- [SecKatie/CVE-2019-8978](https://github.com/SecKatie/CVE-2019-8978)
### CVE-2019-8979 (2019-02-21)
@ -21261,6 +21291,7 @@
- [awakened1712/CVE-2019-11932](https://github.com/awakened1712/CVE-2019-11932)
- [JasonJerry/WhatsRCE](https://github.com/JasonJerry/WhatsRCE)
- [TulungagungCyberLink/CVE-2019-11932](https://github.com/TulungagungCyberLink/CVE-2019-11932)
- [infiniteLoopers/CVE-2019-11932](https://github.com/infiniteLoopers/CVE-2019-11932)
- [5l1v3r1/CVE-2019-11932](https://github.com/5l1v3r1/CVE-2019-11932)
- [valbrux/CVE-2019-11932-SupportApp](https://github.com/valbrux/CVE-2019-11932-SupportApp)
- [fastmo/CVE-2019-11932](https://github.com/fastmo/CVE-2019-11932)
@ -29702,13 +29733,10 @@
- [mikesplain/CVE-2015-0235-cookbook](https://github.com/mikesplain/CVE-2015-0235-cookbook)
- [aaronfay/CVE-2015-0235-test](https://github.com/aaronfay/CVE-2015-0235-test)
- [piyokango/ghost](https://github.com/piyokango/ghost)
- [mholzinger/CVE-2015-0235_GHOST](https://github.com/mholzinger/CVE-2015-0235_GHOST)
- [adherzog/ansible-CVE-2015-0235-GHOST](https://github.com/adherzog/ansible-CVE-2015-0235-GHOST)
- [favoretti/lenny-libc6](https://github.com/favoretti/lenny-libc6)
- [nickanderson/cfengine-CVE_2015_0235](https://github.com/nickanderson/cfengine-CVE_2015_0235)
- [koudaiii-archives/cookbook-update-glibc](https://github.com/koudaiii-archives/cookbook-update-glibc)
- [F88/ghostbusters15](https://github.com/F88/ghostbusters15)
- [tobyzxj/CVE-2015-0235](https://github.com/tobyzxj/CVE-2015-0235)
- [makelinux/CVE-2015-0235-workaround](https://github.com/makelinux/CVE-2015-0235-workaround)
- [arm13/ghost_exploit](https://github.com/arm13/ghost_exploit)
- [alanmeyer/CVE-glibc](https://github.com/alanmeyer/CVE-glibc)
@ -30478,6 +30506,13 @@
- [halkichi0308/CVE-2015-9251](https://github.com/halkichi0308/CVE-2015-9251)
### CVE-2015-10034 (2023-01-09)
<code>In j-nowak workout-organizer wurde eine kritische Schwachstelle gefunden. Hierbei betrifft es unbekannten Programmcode. Mit der Manipulation mit unbekannten Daten kann eine sql injection-Schwachstelle ausgenutzt werden. Der Patch wird als 13cd6c3d1210640bfdb39872b2bb3597aa991279 bezeichnet. Als bestmögliche Massnahme wird Patching empfohlen.
</code>
- [andrenasx/CVE-2015-10034-Test](https://github.com/andrenasx/CVE-2015-10034-Test)
## 2014
### CVE-2014-0038 (2014-02-06)