SerialWaffle

CVE-2020-1472

Description: An elevation of privilege vulnerability exists when an attacker establishes a vulnerable Netlogon secure channel connection to a domain controller, using the Netlogon Remote Protocol (MS-NRPC), aka 'Netlogon Elevation of Privilege Vulnerability'. Link: Visit the GitHub Repository Language: Python Owner: TuanCui22 Stars: 0 Forks: 0

CVE-2024-23334

Description: aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. When using aiohttp as a web server and configuring static routes, it is necessary to specify the root path for static files. Additionally, the option 'follow_symlinks' can be used to determine whether to follow

CVE-2018-9206

Description: Unauthenticated arbitrary file upload vulnerability in Blueimp jQuery-File-Upload <= v9.22.0 Link: Visit the GitHub Repository Language: Python Owner: MikeyPPPPPPPP Stars: 0 Forks: 0

CVE-2024-32113

Description: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Apache OFBiz.This issue affects Apache OFBiz: before 18.12.13. Users are recommended to upgrade to version 18.12.13, which fixes the issue. Link: Visit the GitHub Repository Language: Python Owner: MikeyPPPPPPPP

CVE-2024-10914

Description: A vulnerability was found in D-Link DNS-320, DNS-320LW, DNS-325 and DNS-340L up to 20241028. It has been declared as critical. Affected by this vulnerability is the function cgi_user_add of the file /cgi-bin/account_mgr.cgi?cmd=cgi_user_add. The manipulation of the argument name leads to

CVE-2023-50564

Description: An arbitrary file upload vulnerability in the component /inc/modules_install.php of Pluck-CMS v4.7.18 allows attackers to execute arbitrary code via uploading a crafted ZIP file. Link: Visit the GitHub Repository Language: Python Owner: xpltive Stars: 0 Forks: 0

CVE-2022-46463

Description: An access control issue in Harbor v1.X.X to v2.5.3 allows attackers to access public and private image repositories without authentication. Link: Visit the GitHub Repository Language: Python Owner: CodeSecurityTeam Stars: 1 Forks: 2

CVE-2023-20198

Description: Checker for CVE-2023-20198 , Not a full POC Just checks the implementation and detects if hex is in response or not Link: Visit the GitHub Repository Language: Python Owner: JoyGhoshs Stars: 0 Forks: 0

CVE-2023-27524

Description: Apache Superset 默认SECRET_KEY 漏洞(CVE-2023-27524) Link: Visit the GitHub Repository Language: Python Owner: CN016 Stars: 0 Forks: 0

CVE-2023-27524

Description: A POC for the all new CVE-2023-27524 which allows for authentication bypass and gaining access to the admin dashboard. Link: Visit the GitHub Repository Language: Python Owner: MaanVader Stars: 0 Forks: 0