[ { "id": 825358517, "name": "chamilo-lms-unauthenticated-big-upload-rce-poc", "full_name": "m3m0o\/chamilo-lms-unauthenticated-big-upload-rce-poc", "owner": { "login": "m3m0o", "id": 130102748, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/130102748?v=4", "html_url": "https:\/\/github.com\/m3m0o" }, "html_url": "https:\/\/github.com\/m3m0o\/chamilo-lms-unauthenticated-big-upload-rce-poc", "description": "This is a script written in Python that allows the exploitation of the Chamilo's LMS software security flaw described in CVE-2023-4220", "fork": false, "created_at": "2024-07-07T15:08:30Z", "updated_at": "2024-09-24T21:45:41Z", "pushed_at": "2024-07-27T00:19:17Z", "stargazers_count": 18, "watchers_count": 18, "has_discussions": false, "forks_count": 3, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [ "chamilo", "chamilo-lms", "cve", "cve-2023-4220", "exploit", "rce", "rce-exploit" ], "visibility": "public", "forks": 3, "watchers": 18, "score": 0, "subscribers_count": 1 }, { "id": 825375455, "name": "Chamilo-LMS-Unauthenticated-File-Upload-CVE-2023-4220", "full_name": "dollarboysushil\/Chamilo-LMS-Unauthenticated-File-Upload-CVE-2023-4220", "owner": { "login": "dollarboysushil", "id": 48991715, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/48991715?v=4", "html_url": "https:\/\/github.com\/dollarboysushil" }, "html_url": "https:\/\/github.com\/dollarboysushil\/Chamilo-LMS-Unauthenticated-File-Upload-CVE-2023-4220", "description": "Unrestricted file upload in big file upload functionality in `\/main\/inc\/lib\/javascript\/bigupload\/inc\/bigUpload.php` in Chamilo LMS <= v1.11.24 allows unauthenticated attackers to perform stored cross-site scripting attacks and obtain remote code execution via uploading of web shell.", "fork": false, "created_at": "2024-07-07T15:53:54Z", "updated_at": "2024-07-31T16:11:57Z", "pushed_at": "2024-07-07T16:18:13Z", "stargazers_count": 1, "watchers_count": 1, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [ "chamilo-exploit", "chamilo-lms", "cve-2023-4220", "file-upload-vulnerability", "hackthebox" ], "visibility": "public", "forks": 0, "watchers": 1, "score": 0, "subscribers_count": 1 }, { "id": 825400213, "name": "CVE-2023-4220", "full_name": "charlesgargasson\/CVE-2023-4220", "owner": { "login": "charlesgargasson", "id": 26895987, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/26895987?v=4", "html_url": "https:\/\/github.com\/charlesgargasson" }, "html_url": "https:\/\/github.com\/charlesgargasson\/CVE-2023-4220", "description": "RCE Chamilo 1.11.24", "fork": false, "created_at": "2024-07-07T16:57:18Z", "updated_at": "2024-08-16T20:18:49Z", "pushed_at": "2024-07-11T07:27:20Z", "stargazers_count": 1, "watchers_count": 1, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [ "2023", "beersel", "bigupload", "chamilo", "chamilo-lms", "cve", "cve-2023-4220", "exploit", "lms", "poc", "rce" ], "visibility": "public", "forks": 0, "watchers": 1, "score": 0, "subscribers_count": 1 }, { "id": 825617104, "name": "CVE-2023-4220", "full_name": "insomnia-jacob\/CVE-2023-4220", "owner": { "login": "insomnia-jacob", "id": 174169862, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/174169862?v=4", "html_url": "https:\/\/github.com\/insomnia-jacob" }, "html_url": "https:\/\/github.com\/insomnia-jacob\/CVE-2023-4220", "description": "CVE-2023-4220 POC RCE", "fork": false, "created_at": "2024-07-08T07:31:35Z", "updated_at": "2024-08-07T23:36:24Z", "pushed_at": "2024-08-07T23:36:20Z", "stargazers_count": 3, "watchers_count": 3, "has_discussions": false, "forks_count": 1, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 1, "watchers": 3, "score": 0, "subscribers_count": 1 }, { "id": 825678272, "name": "Chamilo-CVE-2023-4220-Exploit", "full_name": "Ziad-Sakr\/Chamilo-CVE-2023-4220-Exploit", "owner": { "login": "Ziad-Sakr", "id": 60154552, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/60154552?v=4", "html_url": "https:\/\/github.com\/Ziad-Sakr" }, "html_url": "https:\/\/github.com\/Ziad-Sakr\/Chamilo-CVE-2023-4220-Exploit", "description": "This is an Exploit for Unrestricted file upload in big file upload functionality in Chamilo-LMS for this location \"\/main\/inc\/lib\/javascript\/bigupload\/inc\/bigUpload.php\" in Chamilo LMS <= v1.11.24, and Attackers can obtain remote code execution via uploading of web shell.", "fork": false, "created_at": "2024-07-08T09:48:38Z", "updated_at": "2024-08-16T19:50:23Z", "pushed_at": "2024-07-08T11:55:53Z", "stargazers_count": 4, "watchers_count": 4, "has_discussions": false, "forks_count": 2, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [ "chamilo", "chamilo-lms", "cve", "exploit", "file-upload-poc", "lms", "penetration", "penetration-testing", "poc", "web-shell" ], "visibility": "public", "forks": 2, "watchers": 4, "score": 0, "subscribers_count": 1 }, { "id": 826392009, "name": "cve-2023-4220-poc", "full_name": "HO4XXX\/cve-2023-4220-poc", "owner": { "login": "HO4XXX", "id": 128794868, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/128794868?v=4", "html_url": "https:\/\/github.com\/HO4XXX" }, "html_url": "https:\/\/github.com\/HO4XXX\/cve-2023-4220-poc", "description": "PoC for CVE-2023-4220 - Chamilo LMS - Unauthenticated File Upload in BigUpload", "fork": false, "created_at": "2024-07-09T16:09:18Z", "updated_at": "2024-07-10T08:14:06Z", "pushed_at": "2024-07-09T16:13:18Z", "stargazers_count": 0, "watchers_count": 0, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 0, "watchers": 0, "score": 0, "subscribers_count": 1 }, { "id": 826491015, "name": "CVE-2023-4220-PoC", "full_name": "B1TC0R3\/CVE-2023-4220-PoC", "owner": { "login": "B1TC0R3", "id": 77125551, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/77125551?v=4", "html_url": "https:\/\/github.com\/B1TC0R3" }, "html_url": "https:\/\/github.com\/B1TC0R3\/CVE-2023-4220-PoC", "description": "Proof of concept exploit for CVE-2023-4220", "fork": false, "created_at": "2024-07-09T20:06:40Z", "updated_at": "2024-08-19T08:41:49Z", "pushed_at": "2024-08-19T08:41:45Z", "stargazers_count": 0, "watchers_count": 0, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 0, "watchers": 0, "score": 0, "subscribers_count": 2 }, { "id": 827338519, "name": "CVE-2023-4220", "full_name": "nr4x4\/CVE-2023-4220", "owner": { "login": "nr4x4", "id": 104433163, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/104433163?v=4", "html_url": "https:\/\/github.com\/nr4x4" }, "html_url": "https:\/\/github.com\/nr4x4\/CVE-2023-4220", "description": "CVE-2023–4220 Exploit", "fork": false, "created_at": "2024-07-11T13:06:17Z", "updated_at": "2024-07-12T10:21:41Z", "pushed_at": "2024-07-12T10:21:38Z", "stargazers_count": 0, "watchers_count": 0, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 0, "watchers": 0, "score": 0, "subscribers_count": 1 }, { "id": 828720069, "name": "CVE-2023-4220-Exploit", "full_name": "Al3xGD\/CVE-2023-4220-Exploit", "owner": { "login": "Al3xGD", "id": 115897853, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/115897853?v=4", "html_url": "https:\/\/github.com\/Al3xGD" }, "html_url": "https:\/\/github.com\/Al3xGD\/CVE-2023-4220-Exploit", "description": "LMS Chamilo 1.11.24 CVE-2023-4220 Exploit", "fork": false, "created_at": "2024-07-15T01:38:47Z", "updated_at": "2024-07-15T01:51:16Z", "pushed_at": "2024-07-15T01:51:13Z", "stargazers_count": 0, "watchers_count": 0, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 0, "watchers": 0, "score": 0, "subscribers_count": 1 }, { "id": 837062013, "name": "chamilo-lms-unauthenticated-rce-poc", "full_name": "charchit-subedi\/chamilo-lms-unauthenticated-rce-poc", "owner": { "login": "charchit-subedi", "id": 59109697, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/59109697?v=4", "html_url": "https:\/\/github.com\/charchit-subedi" }, "html_url": "https:\/\/github.com\/charchit-subedi\/chamilo-lms-unauthenticated-rce-poc", "description": "This is a script written in Python that allows the exploitation of the Chamilo's LMS software security flaw described in CVE-2023-4220 ", "fork": false, "created_at": "2024-08-02T06:14:56Z", "updated_at": "2024-08-02T06:17:33Z", "pushed_at": "2024-08-02T06:17:11Z", "stargazers_count": 0, "watchers_count": 0, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 0, "watchers": 0, "score": 0, "subscribers_count": 1 }, { "id": 844242066, "name": "CVE-2023-4220-Proof-of-concept", "full_name": "LGenAgul\/CVE-2023-4220-Proof-of-concept", "owner": { "login": "LGenAgul", "id": 110150285, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/110150285?v=4", "html_url": "https:\/\/github.com\/LGenAgul" }, "html_url": "https:\/\/github.com\/LGenAgul\/CVE-2023-4220-Proof-of-concept", "description": "Chamilo LMS Unauthenticated Big Upload File that allows remote code execution", "fork": false, "created_at": "2024-08-18T20:00:33Z", "updated_at": "2024-08-18T20:10:32Z", "pushed_at": "2024-08-18T20:10:29Z", "stargazers_count": 0, "watchers_count": 0, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 0, "watchers": 0, "score": 0, "subscribers_count": 1 }, { "id": 846844178, "name": "CVE-2023-4220", "full_name": "VanishedPeople\/CVE-2023-4220", "owner": { "login": "VanishedPeople", "id": 155242438, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/155242438?v=4", "html_url": "https:\/\/github.com\/VanishedPeople" }, "html_url": "https:\/\/github.com\/VanishedPeople\/CVE-2023-4220", "description": "CVE-2023-4220 PoC Chamilo RCE", "fork": false, "created_at": "2024-08-24T05:32:31Z", "updated_at": "2024-09-23T18:27:34Z", "pushed_at": "2024-09-23T18:27:30Z", "stargazers_count": 0, "watchers_count": 0, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 0, "watchers": 0, "score": 0, "subscribers_count": 0 }, { "id": 847006463, "name": "CVE-2023-4220", "full_name": "thefizzyfish\/CVE-2023-4220", "owner": { "login": "thefizzyfish", "id": 94797978, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/94797978?v=4", "html_url": "https:\/\/github.com\/thefizzyfish" }, "html_url": "https:\/\/github.com\/thefizzyfish\/CVE-2023-4220", "description": "Python exploit for Chamilo Unrestricted File Upload Vuln - CVE-2023-4220", "fork": false, "created_at": "2024-08-24T15:25:28Z", "updated_at": "2024-08-27T21:06:37Z", "pushed_at": "2024-08-24T15:38:29Z", "stargazers_count": 1, "watchers_count": 1, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 0, "watchers": 1, "score": 0, "subscribers_count": 1 }, { "id": 848391001, "name": "CVE-2023-4220", "full_name": "qrxnz\/CVE-2023-4220", "owner": { "login": "qrxnz", "id": 176516119, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/176516119?v=4", "html_url": "https:\/\/github.com\/qrxnz" }, "html_url": "https:\/\/github.com\/qrxnz\/CVE-2023-4220", "description": "CVE-2023-4220 Chamilo Exploit", "fork": false, "created_at": "2024-08-27T17:12:48Z", "updated_at": "2024-08-27T17:17:27Z", "pushed_at": "2024-08-27T17:17:11Z", "stargazers_count": 0, "watchers_count": 0, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 0, "watchers": 0, "score": 0, "subscribers_count": 1 }, { "id": 851612450, "name": "Chamilo-CVE-2023-4220-RCE-Exploit", "full_name": "0x00-null\/Chamilo-CVE-2023-4220-RCE-Exploit", "owner": { "login": "0x00-null", "id": 10076254, "avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/10076254?v=4", "html_url": "https:\/\/github.com\/0x00-null" }, "html_url": "https:\/\/github.com\/0x00-null\/Chamilo-CVE-2023-4220-RCE-Exploit", "description": "(CVE-2023-4220) Chamilo LMS Unauthenticated Big Upload File Remote Code Execution ", "fork": false, "created_at": "2024-09-03T12:16:52Z", "updated_at": "2024-09-10T12:37:45Z", "pushed_at": "2024-09-03T13:11:47Z", "stargazers_count": 1, "watchers_count": 1, "has_discussions": false, "forks_count": 0, "allow_forking": true, "is_template": false, "web_commit_signoff_required": false, "topics": [], "visibility": "public", "forks": 0, "watchers": 1, "score": 0, "subscribers_count": 1 } ]