There are 3 repositories under rce-exploit topic.
WPS-Office 1-Click RCE exp 202308091546
CVE-2023-33246 RocketMQ RCE Detect By Version and Exploit
WConsole Extractor is a python library which automatically exploits a Werkzeug development server in debug mode. You just have to write a python function that leaks a file content and you have your shell :)
Apache OFBiz RCE Scanner & Exploit (CVE-2024-38856)
This is a script written in Python that allows the exploitation of the Metabase's software security flaw described in CVE-2023-38646.
Apache OFBIZ Path traversal leading to RCE POC[CVE-2024-32113 & CVE-2024-36104]
POC - Unauthenticated RCE Flaw in Rejetto HTTP File Server - CVE-2024-23692
WonderCMS Authenticated RCE - CVE-2023-41425
PHP RCE PoC for CVE-2024-4577 written in bash, go, python and a nuclei template
This is a script written in Python that allows the exploitation of the Chamilo's LMS software security flaw described in CVE-2023-4220
Mass Exploit - CVE-2023-1698 < Unauthenticated Remote Command Execution
A fully public exploit of the CVE-2020-0022 BlueFrag Android RCE Vulnerability (tested on Pixel 3 XL)
A PoC exploit for CVE-2024-4577 - PHP CGI Argument Injection Remote Code Execution (RCE)
This is a POC for the CVE-2023-3883 exploit targeting WinRAR up to 6.22. Modified some existing internet-sourced POCs by introducing greater dynamism and incorporated additional try-except blocks within the code.
Compromise a web application and delve deeper into the network to access hosts that you cannot directly reach from your attack host using different approaches.
A PoC exploit for CVE-2020-13945 - Apache APISIX Remote Code Execution (RCE)
Metabase Pre-auth RCE (CVE-2023-38646)
This proof-of-concept script demonstrates how to exploit CVE-2024-4323, a memory corruption vulnerability in Fluent Bit, enabling remote code execution.
Python package dependency confusion vulnerability POC. Impact this vulnerability is Remote code execution (RCE)
Perform With Massive Openfire Unauthenticated Users
LFI / RCE Unauthenticated - Apache 2.4.49 & 2.4.50
PoC of CVE-2024-33883, RCE vulnerability of ejs.
A PoC exploit for CVE-2024-29269 - Telesquare TLR-2005KSH Remote Code Execution (RCE)
This web application provides a sandbox environment for testing and learning about command injection and code execution vulnerabilities, with several endpoints for testing different types of vulnerabilities.
Advanced Software To Scan Webshells With The Best Features - For SEO Webshells/SEO Companies.
Python3 shellshock exploit, for ethical hacking/pentesting purposes only. Use it at your own risk. I'm not responisble if you use it with illegal purposes.
Perform With Mass Remote Code Execution In SPIP Version (4.2.1)
The WinRAR Exploit Builder is a C# project designed to create an exploit targeting a vulnerability in WinRAR.
Issabel PBX 4.0.0 Remote Code Execution (Authenticated) - CVE-2024-0986
This module exploits a vulnerability in the target service identified as CVE-2023-42115.