Giters
Robert Wiggins (RandomRobbieBF)

RandomRobbieBF

Geek Repo

207

followers

8

following

28

stars

Company:Bishopfox

Location:UK,Liverpool

Home Page:https://www.bishopfox.com

Github PK Tool:Github PK Tool

Robert Wiggins's repositories

CVE-2023-32243

CVE-2023-32243 - Essential Addons for Elementor 5.4.0-5.7.1 - Unauthenticated Privilege Escalation

Language:PythonLicense:GPL-3.0Stargazers:84Issues:4Issues:10

CVE-2023-2982

WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) <= 7.6.4 - Authentication Bypass

Language:PythonLicense:GPL-3.0Stargazers:81Issues:4Issues:6

CVE-2023-32117

Integrate Google Drive <= 1.1.99 - Missing Authorization via REST API Endpoints

Stargazers:8Issues:2Issues:0

CVE-2023-2732

MStore API <= 3.9.2 - Authentication Bypass

Language:PythonLicense:Apache-2.0Stargazers:7Issues:2Issues:1

CVE-2022-0952

Sitemap by click5 < 1.0.36 - Unauthenticated Arbitrary Options Update

Language:PythonLicense:GPL-3.0Stargazers:5Issues:2Issues:0

super-secret-finder

Burp Plugin for Secret Matching

Language:PythonStargazers:5Issues:2Issues:0

CVE-2022-3904

CVE-2022-3904 MonsterInsights < 8.9.1 - Stored Cross-Site Scripting via Google Analytics

Language:PythonLicense:Apache-2.0Stargazers:3Issues:2Issues:0

CVE-2023-2877

Formidable Forms < 6.3.1 - Subscriber+ Remote Code Execution

Language:PythonLicense:Apache-2.0Stargazers:3Issues:2Issues:0

what-wordpress

Tool to extract all themes and plugins that are shown on the front page of a wordpress site.

Language:PythonLicense:GPL-3.0Stargazers:3Issues:1Issues:0

wordpress-php-object-helper

Know a plugin has a php object exploit but need to find which lib to use?

Language:PythonLicense:GPL-3.0Stargazers:3Issues:2Issues:0

CVE-2023-0630

CVE-2023-0630 - Slimstat Analytics < 4.9.3.3 - Subscriber+ SQL Injection

Language:PythonLicense:GPL-3.0Stargazers:2Issues:2Issues:0

binary-edge-render-extract

Create a datatable output from a binaryedge render scan

Language:GoLicense:GPL-3.0Stargazers:1Issues:0Issues:0

csp-log4j

Finds CSP report urls and tests to see if they are vulnerable to log4j

Language:GoLicense:Apache-2.0Stargazers:1Issues:2Issues:0

CVE-2021-24356

Simple 301 Redirects by BetterLinks - 2.0.0 – 2.0.3 - Subscriber + Arbitrary Plugin Installation

Language:PythonLicense:GPL-3.0Stargazers:1Issues:2Issues:0

CVE-2021-24647

CVE-2021-24647 Pie Register < 3.7.1.6 - Unauthenticated Arbitrary Login

Language:PythonLicense:GPL-3.0Stargazers:1Issues:2Issues:0

CVE-2021-25032

PublishPress Capabilities < 2.3.1 - Unauthenticated Arbitrary Options Update to Blog Compromise

Language:PythonLicense:GPL-3.0Stargazers:1Issues:2Issues:0

CVE-2021-34621

ProfilePress 3.0 - 3.1.3 - Unauthenticated Privilege Escalation

Language:PythonLicense:GPL-3.0Stargazers:1Issues:2Issues:0

CVE-2022-0439

CVE-2022-0439 - Email Subscribers & Newsletters < 5.3.2 - Subscriber+ Blind SQL injection

Language:PythonStargazers:1Issues:2Issues:0

CVE-2022-1203

Content Mask < 1.8.4 - Subscriber+ Arbitrary Options Update

Language:PythonLicense:Apache-2.0Stargazers:1Issues:2Issues:0

CVE-2022-1442

WordPress Plugin Metform <= 2.1.3 - Improper Access Control Allowing Unauthenticated Sensitive Information Disclosure

Language:ShellLicense:Apache-2.0Stargazers:1Issues:2Issues:0

CVE-2022-45354

Download Monitor <= 4.7.60 - Sensitive Information Exposure via REST API

Language:PythonLicense:Apache-2.0Stargazers:1Issues:2Issues:0

CVE-2023-36531

LiquidPoll – Advanced Polls for Creators and Brands <= 3.3.68 - Missing Authorization via activate_addon

Language:PythonLicense:Apache-2.0Stargazers:1Issues:2Issues:0

e-signature-poc

e-signature < 1.5.6.8 - Unauthenticated Remote Code Execution

Stargazers:1Issues:0Issues:0

import-users-from-csv-with-meta

Import Users From CSV with Meta 1.15 - Unauthorised Authenticated Users Export

Language:PythonLicense:Apache-2.0Stargazers:1Issues:2Issues:0

js-jobs

JS Job Manager < 1.1.9 - Unauthenticated Arbitrary Plugin Installation/Activation

Language:PythonLicense:Apache-2.0Stargazers:1Issues:2Issues:0

learning-management-system

Masteriyo - LMS for WordPress <= 1.6.7 - Sensitive Information Exposure

Language:PythonLicense:GPL-3.0Stargazers:1Issues:2Issues:0

static-file-checker

Checks Djangos /static/staticfiles.json for exposed creds using nuclei

Language:GoLicense:Apache-2.0Stargazers:1Issues:2Issues:0

chart-down

Extracts all the chart lists from ChartMuseum

Language:GoLicense:Apache-2.0Stargazers:0Issues:2Issues:0

freemius-exploit

Freemius Library < 2.2.4 - Subscriber+ Arbitrary Option Update

Language:PythonLicense:GPL-3.0Stargazers:0Issues:0Issues:0

superset-default

Superset Default Creds Tester

Language:PythonLicense:Apache-2.0Stargazers:0Issues:0Issues:0