Abdualhadi khalifa's repositories
Bypass-authentication-GitHub-Enterprise-Server
The authentication bypass vulnerability in GitHub Enterprise Server (GHES) allows an unauthorized attacker to access an instance of GHES without requiring pre-authentication. The vulnerability affects all GHES versions prior to 3.13.0.
Microsoft-Edge-Information-Disclosure
CVE-2024-30056 Microsoft Edge (Chromium-based) Information Disclosure Vulnerability
-CVE-2024-21683-RCE-in-Confluence-Data-Center-and-Server
This vulnerability could allow an attacker to take complete control of a vulnerable Confluence server. This could allow the attacker to steal data, modify data, or disrupt the availability of the server.
Vulnerability-detection-functions
Vulnerability detection funcVulnerability-detection-functions Vulnerability Detection Functionality The script currently focuses on detecting cross-site scripting (XSS) vulnerabilities in web links. Additional functions will be developed to detect vulnerabilities so you can incorporate them into your script.
WordPress-XStore-theme-SQL-Injection
(CVE-2024-33559) The XStore theme for WordPress is vulnerable to SQL Injection due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query
-CrushFTP-11.1.0---Directory-Traversal
A server side template injection vulnerability in CrushFTP in all versions before 10.7.1 and 11.1.0 on all platforms allows unauthenticated remote attackers to read files from the filesystem outside of the VFS Sandbox, bypass authentication to gain administrative access, and perform remote code execution on the server.
FreeRDP-Out-of-Bounds-Read-CVE-2024-32459-
The FreeRDP - Out-of-Bounds Read (CVE-2024-32459) vulnerability concerns FreeRDP, a free implementation of Remote Desktop Protocol. FreeRDP-based clients and servers using a version of FreeRDP prior to version 3.5.0 or 2.11.6 are vulnerable to out-of-bounds reading12. Versions 3.5.0 and 2.11.6 correct the problem