Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/kos0ng/cves
Repository regarding my security research
https://github.com/kos0ng/cves
cve exploit security
Last synced: 2 months ago
JSON representation
Repository regarding my security research
- Host: GitHub
- URL: https://github.com/kos0ng/cves
- Owner: kos0ng
- Created: 2022-09-27T14:17:03.000Z (over 2 years ago)
- Default Branch: main
- Last Pushed: 2024-01-02T17:26:20.000Z (about 1 year ago)
- Last Synced: 2024-12-03T16:19:15.169Z (2 months ago)
- Topics: cve, exploit, security
- Language: Python
- Homepage:
- Size: 7.81 KB
- Stars: 4
- Watchers: 1
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# CVEs
Repository regarding my security research. Detailed proof of concept will be written on [my blog](https://kos0ng.gitbook.io/blog/).
### List CVEs
1. **Oracle** (CVE-2021-2461) - Oracle Communications Interactive Session Recorder 6.4 Provision API Remote Code Execution
2. **Strapi** (CVE-2022-31367) - Strapi up to 3.6.9/4.1.9 SQL Injection Through Filtering Feature
3. **Daloradius** (CVE-2023-0046) - Unrestricted Logging Filename Lead to RCE
4. **Daloradius** (CVE-2023-0048) - Lack of Input Sanitazion lead to RCE
5. **Froxlor** (CVE-2023-0316) - Local File Read through Improper Filename Validation