This repository contains a proof-of-concept exploit written in C++ that demonstrates the exploitation of a vulnerability affecting the Windows Error Reporting (WER) component.

This script is designed to exploit a heap buffer overflow vulnerability in a socks5 proxy server.

This repository contains combined exploits for two vulnerabilities in Moodle, a widely used open-source learning management system (LMS)

This repository contains an exploit for targeting Microsoft Outlook through Exchange Online, leveraging a vulnerability to execute arbitrary code via COM DLLs. The exploit utilizes a modified versi…

Draw a ui and make it real

Run popular GPTs without the need for ChatGPT Plus subscription

Desktop app for automatically translating comics - BDs, Manga, Manhwa, Fumetti and more in a variety of formats (Image, Pdf, Epub, cbr, cbz, etc) and in multiple languages.

In Notion Web Clipper 1.0.3(7), a .nib file is susceptible to the Dirty NIB attack.

Explore the depths of CVE-2023-6710 with our comprehensive Proof of Concept (PoC). This CVE, identified as a potential security vulnerability, has been meticulously examined to demonstrate its impa…

Welcome to the Metasploit Exploits Repository, your go-to resource for a comprehensive collection of cutting-edge exploits designed for penetration testing and ethical hacking. Developed and mainta…

A PoC exploit for CVE-2023-51467 - Apache OFBiz Authentication Bypass

just idea, no cp pls

Pilot program for CVE submission through GitHub. CVE Record Submission via Pilot PRs ending 6/30/2023

Multiple SQL injection vulnerabilities in /customer_support/ajax.php?action=save_department in Customer Support System 1.0 allow authenticated attackers to execute arbitrary SQL commands via id or …

Multiple SQL injection vulnerabilities in /customer_support/ajax.php?action=save_ticket in Customer Support System 1.0 allow authenticated attackers to execute arbitrary SQL commands via department…

Under Work Please come Back Later

PoC CVE-2023-5044

Exploit for CVE-2023-35813 POC

Bash script to take a list of domains/subdomains (e.g. from amass) and check if they're in scope based on a file of inscope IP addresses

GOG Galaxy LPE Exploit

CVE-2022-34918 netfilter nf_tables 本地提权 POC

Example payload for CVE-2022-21894

Unauthenticated RCE in Open Web Analytics (OWA) 1.7.3

Oracle Weblogic RCE - CVE-2022-2109

Apache Spark Shell Command Injection Vulnerability

vuln scaner and exploit

HTTP Protocol Stack Remote Code Execution Vulnerability CVE-2022-21907