{"uuid": "288c15c0-7245-4408-9aea-545f3c68d48b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-32243", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/3011", "content": "Tools - Hackers Factory \n\nFresh Resolvers\n\nUses DNS Validator to generate a list of fresh working DNS resolvers every day.\n\nhttps://github.com/Findomain/fresh-resolvers\n\n#infosec #pentesting #bugbounty\n\nPublications\n\nA home for publications, including slides/papers, proof-of-concepts, videos and tools.\n\nhttps://github.com/elttam/publications\n\n#cybersecurity #infosec\n\nCVE-2023-32243\n\nEssential Addons for Elementor 5.4.0-5.7.1 - Unauthenticated Privilege Escalation. The plugin does not validate the password reset key, which could allow unauthenticated attackers to reset arbitrary account's password to anything they want, by knowing the related email or username, gaining access to them.\n\nhttps://github.com/RandomRobbieBF/CVE-2023-32243\n\n#cve #cybersecurity #infosec\n\nCVE-2023-31703\n\nCross Site Scripting (XSS) in the edit user form in Microworld Technologies eScan management console 14.0.1400.2281 allows remote attacker to inject arbitrary code via the from parameter in the URL directly.\n\nhttps://github.com/sahiloj/CVE-2023-31703\n\n#cve #cybersecurity #infosec\n\nhacking-books\n\nhttps://github.com/tanc7/hacking-books\n\n#cybersecurity #infosec\n\nDiscord-Recon\n\nDiscord bot created to automate bug bounty recon, automated scans and information gathering via a #discord server.\n\nhttps://github.com/DEMON1A/Discord-Recon\n\n#OSINT #recon #infosec\n\nhackthebox\n\nNotes Taken for HTB Machines & InfoSec Community.\n\nhttps://github.com/dhaneshsivasamy07/hackthebox\n\n#cybersecurity #infosec\n\nAuditor Roadmap\n\nAn open source repository, dedicated towards creating a journal of free materials for learning smart contract development & auditing.\n\nhttps://github.com/contractcops/auditingroadmap\n\n#cybersecurity #infosec #pentesting\n\nPassMute\n\nA multi featured Password Transmutation/Mutator Tool.\n\nhttps://github.com/HITH-Hackerinthehouse/PassMute\n\n#infosec #pentesting #redteam\n\nInfosec Streams List\n\nA (hopefully) actively maintained activity-based-autosorted list of InfoSec Streamers.\n\nhttps://github.com/infosecstreams/infosecstreams.github.io\n\nWeb:\nhttps://infosecstreams.com/\n\n#cybersecurity #infosec #pentesting\n\nWiFi Exploitation Framework\n\nA fully offensive framework to the 802.11 networks and protocols with different types of attacks for WPA/WPA2 and WEP, automated hash cracking, and much more.\n\nhttps://github.com/D3Ext/WEF\n\n#infosec #pentesting #redteam\n\nDed Security Framework\n\nA tool aimed at security professionals.\n\nhttps://github.com/dedsecurity/dedsecurity-framework\n\n#infosec #pentesting #redteam\n\nhttps://t.me/dilagrafie\nhttps://t.me/HackerFactory", "creation_timestamp": "2023-05-18T16:35:04.000000Z"}