Valentin Lobstein's repositories
metasploit-framework
Metasploit Framework
CVE-2024-5084
Hash Form – Drag & Drop Form Builder <= 1.1.0 - Unauthenticated Arbitrary File Upload to Remote Code Execution
CVE-2024-29269
An issue discovered in Telesquare TLR-2005Ksh 1.0.0 and 1.1.4 allows attackers to run arbitrary system commands via the Cmd parameter.
wconsole_extractor
WConsole Extractor is a python library which automatically exploits a Werkzeug development server in debug mode. You just have to write a python function that leaks a file content and you have your shell :)
secator
secator - the pentester's swiss knife
pentest-reseau
Projet de pentest réseau automatisé
web-check-trkn
🕵️♂️ All-in-one OSINT tool for analysing any website
CVE-2024-31819
Unauthenticated Remote Code Execution (RCE) Vulnerability in WWBNIndex Plugin of AVideo Platform from 12.4 to 14.2
CVE-2024-3273
D-Link NAS CVE-2024-3273 Exploit Tool
derbynet-research
List of vulnerabilities in jeffpiazza/derbynet prior v9.0
EmojifyGateVuln-ProofOfConcept
EmojifyGate Vulnerability: A PoC Demonstration
CVE-2024-20767
Exploit Toolkit for Adobe ColdFusion CVE-2024-20767 Vulnerability
CVE-2024-1212
Unauthenticated Command Injection In Progress Kemp LoadMaster
CVE-2023-43208-EXPLOIT
A PoC exploit for CVE-2023-43208 - Mirth Connect Remote Code Execution (RCE)
CVE-2024-27198
Proof of Concept for Authentication Bypass in JetBrains TeamCity Pre-2023.11.4
CVE-2024-25600
Unauthenticated Remote Code Execution – Bricks <= 1.9.6
I-S00N
Leak
CVE-2023-6553
Backup Migration <= 1.3.7 - Unauthenticated Remote Code Execution
CVE-2024-21893-to-CVE-2024-21887
CVE-2024-21893 to CVE-2024-21887 Exploit Toolkit
CVE-2024-22899-to-22903-ExploitChain
Comprehensive Exploit Chain for Multiple Vulnerabilities in VinChin Backup & Recovery <= 7.2
CVE-2023-22527
Atlassian Confluence - Remote Code Execution
CVE-2023-46805
Ivanti Pulse Secure CVE-2023-46805 Scanner - Based on Assetnote's Research
ssl_explorer
A CLI Tool for Extracting Server Ownership Clues from SSL/TLS Certificates
CVE-2024-21887
A command injection vulnerability in web components of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure (9.x, 22.x) allows an authenticated administrator to send specially crafted requests and execute arbitrary commands on the appliance.
CVE-2023-7028
This repository presents a proof-of-concept of CVE-2023-7028