Proof of Concept - RCE Exploitation : Git submodules' names vulnerability - Ensimag November 2018
CVE-2018-8021 Proof-Of-Concept and Exploit
This is an exploitation guide for CVE-2016-2233
Proof of Concept exploit for CVE-2017-8570
Exploit toolkit CVE-2017-8759 - v1.0 is a handy python script which provides pentesters and security researchers a quick and effective way to test Microsoft .NET Framework RCE. It could generate a malicious RTF file and deliver metasploit / meterpreter / other payload to victim without any complex configuration.
This is a Metasploit module which exploits CVE-2017-11882 using the POC released here : https://embedi.com/blog/skeleton-closet-ms-office-vulnerability-you-didnt-know-about.
Proof-of-Concept exploits for CVE-2017-11882
PrestaShop (1.6.x <= 188.8.131.52 or 1.7.x <= 184.108.40.206.) Back Office Remote Code Execution (CVE-2018-19126)
XSS (via svg file upload)
XSS (Stored) in Monstra-dev
XSS and HTML Code Injection Vulnerability in Statamic CMS
Stored XSS (via SVG file upload) in CMSMS CRM
NodeJS + Postgres (Remote Code Execution) 🛰
Stored XSS (via SVG file upload) in CM Simple