[ { "id": 825358517, "name": "chamilo-lms-unauthenticated-big-upload-rce-poc", "full_name": "m3m0o\/chamilo-lms-unauthenticated-big-upload-rce-poc", "owner": { "login": "m3m0o", "id": 130102748, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/130102748?v=4", "html_url": "https:\/\/github.com\/m3m0o" }, "html_url": "https:\/\/github.com\/m3m0o\/chamilo-lms-unauthenticated-big-upload-rce-poc", "description": "This is a script written in Python that allows the exploitation of the Chamilo's LMS software security flaw described in CVE-2023-4220", "fork": false, "created_at": "2024-07-07T15:08:30Z", "updated_at": "2024-07-27T00:19:21Z", "pushed_at": "2024-07-27T00:19:17Z", "stargazers_count": 5, "watchers_count": 5, "has_discussions": false, "forks_count": 1, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [ "chamilo", "chamilo-lms", "cve", "cve-2023-4220", "exploit", "rce", "rce-exploit" ], "visibility": "public", "forks": 1, "watchers": 5, "score": 0, "subscribers_count": 1 }, { "id": 825375455, "name": "Chamilo-LMS-Unauthenticated-File-Upload-CVE-2023-4220", "full_name": "dollarboysushil\/Chamilo-LMS-Unauthenticated-File-Upload-CVE-2023-4220", "owner": { "login": "dollarboysushil", "id": 48991715, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/48991715?v=4", "html_url": "https:\/\/github.com\/dollarboysushil" }, "html_url": "https:\/\/github.com\/dollarboysushil\/Chamilo-LMS-Unauthenticated-File-Upload-CVE-2023-4220", "description": "Unrestricted file upload in big file upload functionality in `\/main\/inc\/lib\/javascript\/bigupload\/inc\/bigUpload.php` in Chamilo LMS <= v1.11.24 allows unauthenticated attackers to perform stored cross-site scripting attacks and obtain remote code execution via uploading of web shell.", "fork": false, "created_at": "2024-07-07T15:53:54Z", "updated_at": "2024-07-22T14:00:54Z", "pushed_at": "2024-07-07T16:18:13Z", "stargazers_count": 0, "watchers_count": 0, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [ "chamilo-exploit", "chamilo-lms", "cve-2023-4220", "file-upload-vulnerability", "hackthebox" ], "visibility": "public", "forks": 0, "watchers": 0, "score": 0, "subscribers_count": 1 }, { "id": 825400213, "name": "CVE-2023-4220", "full_name": "charlesgargasson\/CVE-2023-4220", "owner": { "login": "charlesgargasson", "id": 26895987, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/26895987?v=4", "html_url": "https:\/\/github.com\/charlesgargasson" }, "html_url": "https:\/\/github.com\/charlesgargasson\/CVE-2023-4220", "description": "RCE Chamilo 1.11.24", "fork": false, "created_at": "2024-07-07T16:57:18Z", "updated_at": "2024-07-11T07:27:24Z", "pushed_at": "2024-07-11T07:27:20Z", "stargazers_count": 0, "watchers_count": 0, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [ "2023", "beersel", "bigupload", "chamilo", "chamilo-lms", "cve", "cve-2023-4220", "exploit", "lms", "poc", "rce" ], "visibility": "public", "forks": 0, "watchers": 0, "score": 0, "subscribers_count": 1 }, { "id": 825617104, "name": "CVE-2023-4220", "full_name": "insomnia-jacob\/CVE-2023-4220", "owner": { "login": "insomnia-jacob", "id": 174169862, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/174169862?v=4", "html_url": "https:\/\/github.com\/insomnia-jacob" }, "html_url": "https:\/\/github.com\/insomnia-jacob\/CVE-2023-4220", "description": "CVE-2023-4220 POC RCE", "fork": false, "created_at": "2024-07-08T07:31:35Z", "updated_at": "2024-07-29T05:46:32Z", "pushed_at": "2024-07-29T05:46:07Z", "stargazers_count": 1, "watchers_count": 1, "has_discussions": false, "forks_count": 1, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 1, "watchers": 1, "score": 0, "subscribers_count": 2 }, { "id": 825678272, "name": "Chamilo-CVE-2023-4220-Exploit", "full_name": "Ziad-Sakr\/Chamilo-CVE-2023-4220-Exploit", "owner": { "login": "Ziad-Sakr", "id": 60154552, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/60154552?v=4", "html_url": "https:\/\/github.com\/Ziad-Sakr" }, "html_url": "https:\/\/github.com\/Ziad-Sakr\/Chamilo-CVE-2023-4220-Exploit", "description": "This is an Exploit for Unrestricted file upload in big file upload functionality in Chamilo-LMS for this location \"\/main\/inc\/lib\/javascript\/bigupload\/inc\/bigUpload.php\" in Chamilo LMS <= v1.11.24, and Attackers can obtain remote code execution via uploading of web shell.", "fork": false, "created_at": "2024-07-08T09:48:38Z", "updated_at": "2024-07-25T08:11:08Z", "pushed_at": "2024-07-08T11:55:53Z", "stargazers_count": 3, "watchers_count": 3, "has_discussions": false, "forks_count": 2, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [ "chamilo", "chamilo-lms", "cve", "exploit", "file-upload-poc", "lms", "penetration", "penetration-testing", "poc", "web-shell" ], "visibility": "public", "forks": 2, "watchers": 3, "score": 0, "subscribers_count": 1 }, { "id": 826392009, "name": "cve-2023-4220-poc", "full_name": "HO4XXX\/cve-2023-4220-poc", "owner": { "login": "HO4XXX", "id": 128794868, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/128794868?v=4", "html_url": "https:\/\/github.com\/HO4XXX" }, "html_url": "https:\/\/github.com\/HO4XXX\/cve-2023-4220-poc", "description": "PoC for CVE-2023-4220 - Chamilo LMS - Unauthenticated File Upload in BigUpload", "fork": false, "created_at": "2024-07-09T16:09:18Z", "updated_at": "2024-07-10T08:14:06Z", "pushed_at": "2024-07-09T16:13:18Z", "stargazers_count": 0, "watchers_count": 0, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 0, "watchers": 0, "score": 0, "subscribers_count": 1 }, { "id": 826491015, "name": "CVE-2023-4220-PoC", "full_name": "B1TC0R3\/CVE-2023-4220-PoC", "owner": { "login": "B1TC0R3", "id": 77125551, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/77125551?v=4", "html_url": "https:\/\/github.com\/B1TC0R3" }, "html_url": "https:\/\/github.com\/B1TC0R3\/CVE-2023-4220-PoC", "description": "Proof of concept exploit for CVE-2023-4220", "fork": false, "created_at": "2024-07-09T20:06:40Z", "updated_at": "2024-07-10T13:26:12Z", "pushed_at": "2024-07-10T13:26:08Z", "stargazers_count": 0, "watchers_count": 0, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 0, "watchers": 0, "score": 0, "subscribers_count": 2 }, { "id": 827338519, "name": "CVE-2023-4220", "full_name": "nr4x4\/CVE-2023-4220", "owner": { "login": "nr4x4", "id": 104433163, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/104433163?v=4", "html_url": "https:\/\/github.com\/nr4x4" }, "html_url": "https:\/\/github.com\/nr4x4\/CVE-2023-4220", "description": "CVE-2023–4220 Exploit", "fork": false, "created_at": "2024-07-11T13:06:17Z", "updated_at": "2024-07-12T10:21:41Z", "pushed_at": "2024-07-12T10:21:38Z", "stargazers_count": 0, "watchers_count": 0, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 0, "watchers": 0, "score": 0, "subscribers_count": 1 }, { "id": 828720069, "name": "CVE-2023-4220-Exploit", "full_name": "Al3xGD\/CVE-2023-4220-Exploit", "owner": { "login": "Al3xGD", "id": 115897853, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/115897853?v=4", "html_url": "https:\/\/github.com\/Al3xGD" }, "html_url": "https:\/\/github.com\/Al3xGD\/CVE-2023-4220-Exploit", "description": "LMS Chamilo 1.11.24 CVE-2023-4220 Exploit", "fork": false, "created_at": "2024-07-15T01:38:47Z", "updated_at": "2024-07-15T01:51:16Z", "pushed_at": "2024-07-15T01:51:13Z", "stargazers_count": 0, "watchers_count": 0, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 0, "watchers": 0, "score": 0, "subscribers_count": 1 } ]