Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
Common Vulnerabilities and Exposures (CVE)
The Common Vulnerabilities and Exposures (CVE) system provides a reference-method for publicly known information-security vulnerabilities and exposures. The United States’ National Cybersecurity FFRDC, operated by The Mitre Corporation, maintains the system, with funding from the US National Cyber Security Division of the US Department of Homeland Security
- GitHub: https://github.com/topics/cve
- Wikipedia: https://en.wikipedia.org/wiki/Common_Vulnerabilities_and_Exposures
- Last updated: 2024-11-14 00:06:14 UTC
- JSON Representation
https://github.com/mbadanoiu/cve-2020-13965
CVE-2020-13965: Cross-Site Scripting via Malicious XML Attachment in Roundcube Webmail
0-day cross-site-scripting cve cve-2020-13965 cves unauthenticated
Last synced: 13 Nov 2024
https://github.com/mbadanoiu/cve-2019-10092
CVE-2019-10092: Limited Cross-Site Scripting via "Proxy Error" Page in Apache HTTP Server
0-day cve cve-2019-10092 cves open-redirect user-interaction
Last synced: 13 Nov 2024
https://github.com/mbadanoiu/cve-2020-12640
CVE-2020-12640: Local PHP File Inclusion via "Plugin Value" in Roundcube Webmail
0-day cve cve-2020-12640 cves local-file-inclusion path-traversal
Last synced: 13 Nov 2024
https://github.com/mbadanoiu/cve-2020-12625
CVE-2020-12625: Cross-Site Scripting via Malicious HTML Attachment in Roundcube Webmail
0-day cross-site-scripting cve cve-2020-12625 cves unauthenticated
Last synced: 13 Nov 2024
https://github.com/mbadanoiu/cve-2019-14678
CVE-2019-14678: XML External Entity in SAS XML Mapper
0-day cve cve-2019-14678 cves xxe
Last synced: 13 Nov 2024
https://github.com/mbadanoiu/cve-2021-46361
CVE-2021-46361: FreeMarker Restriction Bypass in Magnolia CMS
0-day authenticated bypass cve cve-2021-46361 cves remote-code-execution
Last synced: 13 Nov 2024
https://github.com/mbadanoiu/cve-2021-46365
CVE-2021-46365: Unsafe XML Parsing in Magnolia CMS
0-day authenticated cve cve-2021-46365 cves xxe
Last synced: 13 Nov 2024
https://github.com/mbadanoiu/cve-2022-20818
CVE-2022-20818: Local Privilege Escalation via Partial File Read in Cisco SD-WAN
0-day cve cve-2022-20818 cves local-privilege-escalation
Last synced: 13 Nov 2024
https://github.com/mbadanoiu/cve-2022-24442
CVE-2022-24442: FreeMarker Server-Side Template Injection in JetBrains YouTrack
0-day authenticated bypass cve cve-2021-25770 cve-2022-24442 cves remote-code-execution server-side-template-injection
Last synced: 13 Nov 2024
https://github.com/mbadanoiu/cve-2019-1332
CVE-2019-1332: Reflected Cross-Site Scripting in Microsoft SQL Server Reporting Services
0-day cross-site-scripting cve cve-2019-1332 cves reflected-xss
Last synced: 13 Nov 2024
https://github.com/mbadanoiu/cve-2022-29063
CVE-2022-29063: Java Deserialization via RMI Connection in Apache OfBiz
0-day cve cve-2022-29063 cves deserialization local-privilege-escalation
Last synced: 13 Nov 2024
https://github.com/mbadanoiu/cve-2021-46364
CVE-2021-46364: YAML Deserialization in Magnolia CMS
Last synced: 13 Nov 2024
https://github.com/mbadanoiu/cve-2023-49964
CVE-2023-49964: FreeMarker Server-Side Template Injection in Alfresco
0-day authenticated bypass cve cve-2020-12873 cve-2023-49964 cves remote-code-execution server-side-template-injection
Last synced: 13 Nov 2024
https://github.com/mbadanoiu/cve-2022-25813
CVE-2022-25813: FreeMarker Server-Side Template Injection in Apache OfBiz
0-day cve cve-2022-25813 cves remote-code-execution server-side-template-injection user-interaction
Last synced: 13 Nov 2024
https://github.com/mbadanoiu/cve-2020-8248
CVE-2020-8248: Privilege Escalation via Zip Wildcard Exploit in Pulse Secure VPN Linux Client
0-day cve cve-2020-8248 cves local-privilege-escalation wildcard-injection
Last synced: 13 Nov 2024
https://github.com/mbadanoiu/cve-2020-8249
CVE-2020-8249: Buffer Overflow in Pulse Secure VPN Linux Client
0-day buffer-overflow cve cve-2020-8249 cves local-privilege-escalation
Last synced: 13 Nov 2024
https://github.com/mbadanoiu/cve-2020-8250
CVE-2020-8250: Privilege Escalation via Command Injection in Pulse Secure VPN Linux Client
0-day command-injection cve cve-2020-8250 cves local-privilege-escalation
Last synced: 13 Nov 2024
https://github.com/codeb0ss/CVE-2024-25735-PoC
CVE-2024-25735 - WyreStorm Apollo VX20 - Information Disclosure
codeb0ss cve cve-2024 cve-2024-25753 cve-2024-25753-exp cve-2024-25753-poc exploit exploits uncodeboss vulnerability
Last synced: 23 Oct 2024
https://github.com/mbadanoiu/cve-2023-40037
CVE-2023-40037: Incomplete Validation of JDBC and JNDI Connection URLs in Apache NiFi
Last synced: 13 Nov 2024
https://github.com/mbadanoiu/cve-2023-26269
CVE-2023-26269: Misconfigured JMX in Apache James
Last synced: 13 Nov 2024
https://github.com/anthonyharrison/CVSS
Utilities for manipulating CVSS vulnerability metric
cve cvss cvssv3 metrics security vulnerability-assessment
Last synced: 23 Oct 2024
https://github.com/codeb0ss/CVE-2023-20073-
Mass Exploit - CVE-2023-20073 - Cisco VPN Routers - [Unauthenticated Arbitrary File Upload and Stored XSS]
0day bug bugbounty cisco codeb0ss codeboss cve cve-2023-20073 exploit hackerone mass mass-exploit uncodeboss vpn-router
Last synced: 23 Oct 2024
https://github.com/mauricelambert/exchangeweaknesstest
This script test the CVE-2021-26855 vulnerability on Exchange Server.
cve exchange microsoft python3 security security-tools
Last synced: 14 Nov 2024
https://github.com/lem0nsec/cve-2010-5301
A proof of concept of an SEH overflow with arbitrary dll injection
cve exploit-development windows
Last synced: 15 Nov 2024
https://github.com/mauricelambert/cve-2021-21985
This script check the CVE-2021-21985 vulnerability and patch on vCenter Server.
cve cve-2021-21985 python3 security security-scan vcenter
Last synced: 14 Nov 2024
https://github.com/maxgestic/Follina-Generator
A simple Follina RTF and DOCX generator
cve cve-2022-30190 docx exploit follina office poc rce rtf vulnerability windows windows-10 windows-11 word
Last synced: 23 Oct 2024
https://github.com/cty12/concurrency-exploits
A collection of concurrency bugs & exploits
Last synced: 23 Oct 2024
https://github.com/5fingers/cve-notifier
A python tool for sending email notifications about latest CVE trends
Last synced: 08 Nov 2024
https://github.com/andreyrusyaev/secreports
Security research reports
asp-net cve cve-2005-0452 owasp security vulnerability xss
Last synced: 08 Nov 2024
https://github.com/acceis/exploit-cve-2023-38490
Kirby < 3.9.6 XML External Entity exploit
cve cve-2023-38490 exploit kirby kirby-cms xxe
Last synced: 06 Nov 2024
https://github.com/lynk4/windows-server-2008-vapt
A VAPT Report on Microsoft Windows Server 2008 Enterprise Service Pack 1.........
cve cve-2017-0144 eternal eternalblue etneralblue-ms17-010-remote-code-execution exploit ms17-010 penetration-testing vapt vapt-report vulnerability-assessment windows windows-enterprise windows-server windows-server-2008 windows-server-2008-enterprise
Last synced: 08 Nov 2024
https://github.com/lynk4/cve-2011-2523
Python exploit for vsftpd 2.3.4 - Backdoor Command Execution
cve cve-2011-2523 exploit python vsftpd-exploit
Last synced: 08 Nov 2024
https://github.com/gsmith257-cyber/bit3434cve
BI T3434 Project on data mining CVEs and Exploits
cve data data-mining exploits research-project
Last synced: 10 Nov 2024
