Skip to content
/ my_POC Public

There is my vuln POC and EXP. Some of POC were collected, most of POC and EXP were written by myself.

11 stars 5 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

ltfafei/my_POC

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

23 Commits
.idea
.idea
 
 
360_Day-with_vuln
360_Day-with_vuln
 
 
Apereo-CAS_4.1.x_RCE
Apereo-CAS_4.1.x_RCE
 
 
BTSoft-unauthorized-access-vulnerability
BTSoft-unauthorized-access-vulnerability
 
 
CNVD-2020-10487(CVE-2020-1938)-Tomcat_AJP
CNVD-2020-10487(CVE-2020-1938)-Tomcat_AJP
 
 
CNVD-2021-26422_eYouMail
CNVD-2021-26422_eYouMail
 
 
CVE-2016-4437 Apache_Shiro_RCE
CVE-2016-4437 Apache_Shiro_RCE
 
 
CVE-2017-12615
CVE-2017-12615
 
 
CVE-2017-7529
CVE-2017-7529
 
 
CVE-2019-11043_PHP-fpm_RCE
CVE-2019-11043_PHP-fpm_RCE
 
 
CVE-2019-9740
CVE-2019-9740
 
 
CVE-2020-16898_POC
CVE-2020-16898_POC
 
 
CVE-2021-1732_POC
CVE-2021-1732_POC
 
 
CVE-2021-21402_Jellyfin
CVE-2021-21402_Jellyfin
 
 
CVE-2021-25646_Apache_Druid_POC
CVE-2021-25646_Apache_Druid_POC
 
 
CVE-2021-26295_Apache_OFBiz_POC
CVE-2021-26295_Apache_OFBiz_POC
 
 
CVE-2021-3156
CVE-2021-3156
 
 
CVE_2021_21975_VMware_SSRF
CVE_2021_21975_VMware_SSRF
 
 
ClickJacking-vulnerability
ClickJacking-vulnerability
 
 
Flask_injection
Flask_injection
 
 
VESystem_VENGD_fileUpload_vuln
VESystem_VENGD_fileUpload_vuln
 
 
ecology8_front-desk_SQLI_vuln
ecology8_front-desk_SQLI_vuln
 
 
ecology9_front-desk_fileUpload_vuln
ecology9_front-desk_fileUpload_vuln
 
 
general_School_system_POC
general_School_system_POC
 
 
jQuery_xss_POC
jQuery_xss_POC
 
 
netentsec_NGFW_RCE_vuln
netentsec_NGFW_RCE_vuln
 
 
seeyon_exp
seeyon_exp
 
 
sentry_SSRF_POC
sentry_SSRF_POC
 
 
CVE-2021-26084Confluence_Server_7.12.4_OGNL_Injection_RCE.py
CVE-2021-26084Confluence_Server_7.12.4_OGNL_Injection_RCE.py
 
 
CVE-2021-41773_Apache_directory.py
CVE-2021-41773_Apache_directory.py
 
 
CVE-2021-42013_Apache_directory&RCE.py
CVE-2021-42013_Apache_directory&RCE.py
 
 
README.md
README.md
 
 
Ueditor_SSRF_jsp-env_POC.py
Ueditor_SSRF_jsp-env_POC.py
 
 
WPanel_4.3.1_Remote_Code_Execution.py
WPanel_4.3.1_Remote_Code_Execution.py
 
 
WordPress_Duplicate_Page_4.4.1_Cross_Site Scripting.md
WordPress_Duplicate_Page_4.4.1_Cross_Site Scripting.md
 
 

Repository files navigation

my_POC

There is my vuln POC and EXP. Some of POC were collected, most of POC and EXP were written by myself.

声明:以下脚本具有攻击性,仅供专业渗透测试人员在授权情况下合法使用,请勿非法使用,否则后果自负。请勿进行非授权测试,否则后果自负。

Welcome

CSDN:https://afei00123.blog.csdn.net/

公众号:网络运维渗透

使用说明

POC都给出了,怎么用就不用不写了吧。每一个漏洞都有一篇复现文章,近乎保姆级教程。

(1)360_Day-with_vuln:

https://blog.csdn.net/qq_41490561/article/details/116089018?spm=1001.2014.3001.5501 https://blog.csdn.net/qq_41490561/article/details/115578041?spm=1001.2014.3001.5501

(2)Apereo-CAS_4.1.x_RCE:https://afei00123.blog.csdn.net/article/details/115357312

(3)BTSoft-unauthorized-access-vulnerability:https://afei00123.blog.csdn.net/article/details/108317728

(4)CNVD-2020-10487(CVE-2020-1938)-Tomcat:https://afei00123.blog.csdn.net/article/details/108291345

(5)CNVD-2021-26422_eYouMail:https://afei00123.blog.csdn.net/article/details/116097151

(6)CVE-2016-4437 Apache_Shiro_RCE:https://afei00123.blog.csdn.net/article/details/115446124

(7)CVE-2017-7529:https://afei00123.blog.csdn.net/article/details/116331706

(8)CVE-2019-11043_PHP-fpm_RCE:https://afei00123.blog.csdn.net/article/details/112972388

(9)CVE-2019-9740:https://afei00123.blog.csdn.net/article/details/112428493

(10)CVE-2020-16898_POC:https://afei00123.blog.csdn.net/article/details/111873182

(11)CVE-2021-1732_POC:https://afei00123.blog.csdn.net/article/details/115382066

(12)CVE-2021-21402_Jellyfin:https://afei00123.blog.csdn.net/article/details/116102859

(13)CVE-2021-25646_Apache_Druid_POC:https://afei00123.blog.csdn.net/article/details/115361344

(14)CVE-2021-26295_Apache_OFBiz_POC:https://afei00123.blog.csdn.net/article/details/115384125

(15)CVE-2021-3156:https://afei00123.blog.csdn.net/article/details/113437166

(16)CVE_2021_21975_VMware_SSRF:https://afei00123.blog.csdn.net/article/details/115445071

(17)ClickJacking-vulnerability:https://afei00123.blog.csdn.net/article/details/113768666

(18)Flask_injection:https://afei00123.blog.csdn.net/article/details/111938409

(19)VESystem_VENGD_fileUpload_vuln:https://afei00123.blog.csdn.net/article/details/116116387

(20)ecology8_front-desk_SQLI_vuln:https://afei00123.blog.csdn.net/article/details/116075536

(21)ecology9_front-desk_fileUpload_vuln:https://afei00123.blog.csdn.net/article/details/116119845

(22)netentsec_NGFW_RCE_vuln:https://afei00123.blog.csdn.net/article/details/116094274

(23)Ueditor_SSRF_jsp-env_POC:https://afei00123.blog.csdn.net/article/details/115559628

(24)CVE-2021-41773 Apache路径穿越漏洞复现:https://blog.csdn.net/qq_41490561/article/details/120683183

(25)CVE-2021-42013 Apache路径穿越&命令执行漏洞复现: https://blog.csdn.net/qq_41490561/article/details/120684504

About

There is my vuln POC and EXP. Some of POC were collected, most of POC and EXP were written by myself.

Resources

Readme
Activity

Stars

11 stars

Watchers

2 watching

Forks

5 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages