Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

Common Vulnerabilities and Exposures (CVE)

The Common Vulnerabilities and Exposures (CVE) system provides a reference-method for publicly known information-security vulnerabilities and exposures. The United States’ National Cybersecurity FFRDC, operated by The Mitre Corporation, maintains the system, with funding from the US National Cyber Security Division of the US Department of Homeland Security

https://github.com/mbadanoiu/cve-2019-14678

CVE-2019-14678: XML External Entity in SAS XML Mapper

0-day cve cve-2019-14678 cves xxe

Last synced: 13 Nov 2024

https://github.com/mbadanoiu/cve-2021-46361

CVE-2021-46361: FreeMarker Restriction Bypass in Magnolia CMS

0-day authenticated bypass cve cve-2021-46361 cves remote-code-execution

Last synced: 13 Nov 2024

https://github.com/mbadanoiu/cve-2021-46365

CVE-2021-46365: Unsafe XML Parsing in Magnolia CMS

0-day authenticated cve cve-2021-46365 cves xxe

Last synced: 13 Nov 2024

https://github.com/mbadanoiu/cve-2022-20818

CVE-2022-20818: Local Privilege Escalation via Partial File Read in Cisco SD-WAN

0-day cve cve-2022-20818 cves local-privilege-escalation

Last synced: 13 Nov 2024

https://github.com/codexlynx/CVE-2019-25024

Full exploit code for CVE-2019-25024 an unauthenticated command injection flaw in OpenRepeater.

cve cve-2019-25024 exploit mitre openrepeater vulnerability

Last synced: 23 Oct 2024

https://github.com/mbadanoiu/cve-2022-24442

CVE-2022-24442: FreeMarker Server-Side Template Injection in JetBrains YouTrack

0-day authenticated bypass cve cve-2021-25770 cve-2022-24442 cves remote-code-execution server-side-template-injection

Last synced: 13 Nov 2024

https://github.com/mbadanoiu/cve-2019-1332

CVE-2019-1332: Reflected Cross-Site Scripting in Microsoft SQL Server Reporting Services

0-day cross-site-scripting cve cve-2019-1332 cves reflected-xss

Last synced: 13 Nov 2024

https://github.com/mbadanoiu/cve-2022-29063

CVE-2022-29063: Java Deserialization via RMI Connection in Apache OfBiz

0-day cve cve-2022-29063 cves deserialization local-privilege-escalation

Last synced: 13 Nov 2024

https://github.com/mbadanoiu/cve-2021-46364

CVE-2021-46364: YAML Deserialization in Magnolia CMS

cve cve-2021-46364 cves

Last synced: 13 Nov 2024

https://github.com/mbadanoiu/cve-2023-49964

CVE-2023-49964: FreeMarker Server-Side Template Injection in Alfresco

0-day authenticated bypass cve cve-2020-12873 cve-2023-49964 cves remote-code-execution server-side-template-injection

Last synced: 13 Nov 2024

https://github.com/mbadanoiu/cve-2022-25813

CVE-2022-25813: FreeMarker Server-Side Template Injection in Apache OfBiz

0-day cve cve-2022-25813 cves remote-code-execution server-side-template-injection user-interaction

Last synced: 13 Nov 2024

https://github.com/mbadanoiu/cve-2020-8248

CVE-2020-8248: Privilege Escalation via Zip Wildcard Exploit in Pulse Secure VPN Linux Client

0-day cve cve-2020-8248 cves local-privilege-escalation wildcard-injection

Last synced: 13 Nov 2024

https://github.com/mbadanoiu/cve-2020-8249

CVE-2020-8249: Buffer Overflow in Pulse Secure VPN Linux Client

0-day buffer-overflow cve cve-2020-8249 cves local-privilege-escalation

Last synced: 13 Nov 2024

https://github.com/mbadanoiu/cve-2020-8250

CVE-2020-8250: Privilege Escalation via Command Injection in Pulse Secure VPN Linux Client

0-day command-injection cve cve-2020-8250 cves local-privilege-escalation

Last synced: 13 Nov 2024

https://github.com/extra2000/markakd-CVE-2022-2588

Exploit for CVE-2022-2588 by [Markakd](https://github.com/Markakd)

cve cve-poc

Last synced: 23 Oct 2024

https://github.com/mbadanoiu/cve-2023-40037

CVE-2023-40037: Incomplete Validation of JDBC and JNDI Connection URLs in Apache NiFi

cve cve-2023-40037 cves

Last synced: 13 Nov 2024

https://github.com/mbadanoiu/cve-2023-26269

CVE-2023-26269: Misconfigured JMX in Apache James

cve cve-2023-26269 cves

Last synced: 13 Nov 2024

https://github.com/ruivieira/cve-dashboard

Containerised CVE dashboard

container cve dash dashboard openshift python report

Last synced: 23 Oct 2024

https://github.com/mauricelambert/exchangeweaknesstest

This script test the CVE-2021-26855 vulnerability on Exchange Server.

cve exchange microsoft python3 security security-tools

Last synced: 14 Nov 2024

https://github.com/codeb0ss/CVE-2023-20073-

Mass Exploit - CVE-2023-20073 - Cisco VPN Routers - [Unauthenticated Arbitrary File Upload and Stored XSS]

0day bug bugbounty cisco codeb0ss codeboss cve cve-2023-20073 exploit hackerone mass mass-exploit uncodeboss vpn-router

Last synced: 23 Oct 2024

https://github.com/mauricelambert/cve-2021-21985

This script check the CVE-2021-21985 vulnerability and patch on vCenter Server.

cve cve-2021-21985 python3 security security-scan vcenter

Last synced: 14 Nov 2024

https://github.com/anthonyharrison/CVSS

Utilities for manipulating CVSS vulnerability metric

cve cvss cvssv3 metrics security vulnerability-assessment

Last synced: 23 Oct 2024

https://github.com/vincentscode/cve-2024-34313

☣️ This repository contains the description and a proof of concept for CVE-2024-34313

cve security-research

Last synced: 13 Nov 2024

https://github.com/vincentscode/cve-2024-34312

☣️ This repository contains the description and a proof of concept for CVE-2024-34312

cve security-research

Last synced: 13 Nov 2024

https://github.com/cty12/concurrency-exploits

A collection of concurrency bugs & exploits

bug concurrency cve exploit

Last synced: 23 Oct 2024

https://github.com/5fingers/cve-notifier

A python tool for sending email notifications about latest CVE trends

cve notifications

Last synced: 08 Nov 2024

https://github.com/ghusta/struts1-cve-security-checks

Security checks (CVE) in Struts 1.x

cve maven owasp security struts1

Last synced: 10 Nov 2024

https://github.com/greenbone/greenbone-scap

Python library for CVE and CPE Infomation

cpe cve greenbone nist nvd openvas python scap

Last synced: 06 Nov 2024

https://github.com/gsmith257-cyber/bit3434cve

BI T3434 Project on data mining CVEs and Exploits

cve data data-mining exploits research-project

Last synced: 10 Nov 2024

https://github.com/greenbone/greenbone-scap-api

REST API build on top of greenbone-scap

api cpe cve fastapi greenbone nist nvd openvas python rest scap vulnerabilities

Last synced: 06 Nov 2024

https://github.com/acceis/exploit-cve-2023-38490

Kirby < 3.9.6 XML External Entity exploit

cve cve-2023-38490 exploit kirby kirby-cms xxe

Last synced: 06 Nov 2024

https://github.com/exfil0/test_iconv

This repository contains a C program to test for CVE-2024-2961, a buffer overflow vulnerability in the iconv() function of glibc.

buffer cve cve-202402961 glibc iconv overflow pentest test vulnerability

Last synced: 09 Nov 2024