{"uuid": "53b813a8-2e10-4ea0-9970-e183c8dcee81", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-40477", "type": "published-proof-of-concept", "source": "https://t.me/Teamx1945x/957", "content": "https://github.com/punk-security/dnsReaper\n\nCVEMap\n\n\u0627\u0633\u062a\u0643\u0634\u0641 \u063a\u0627\u0628\u0629 \u0627\u0644\u062b\u063a\u0631\u0627\u062a \u0627\u0644\u0623\u0645\u0646\u064a\u0629 \u0648\u0627\u0644\u062a\u0639\u0631\u0636\u0627\u062a \u0627\u0644\u0645\u0634\u062a\u0631\u0643\u0629 (CVE) \u0628\u0633\u0647\u0648\u0644\u0629 \u0628\u0627\u0633\u062a\u062e\u062f\u0627\u0645 CVEMap\u060c \u0623\u062f\u0627\u0629 \u0648\u0627\u062c\u0647\u0629 \u0633\u0637\u0631 \u0627\u0644\u0623\u0648\u0627\u0645\u0631 (CLI) \u0645\u0635\u0645\u0645\u0629 \u0644\u062a\u0648\u0641\u064a\u0631 \u0648\u0627\u062c\u0647\u0629 \u0645\u0646\u0638\u0645\u0629 \u0648\u0633\u0647\u0644\u0629 \u0627\u0644\u062a\u0635\u0641\u062d \u0644\u0645\u062e\u062a\u0644\u0641 \u0642\u0648\u0627\u0639\u062f \u0628\u064a\u0627\u0646\u0627\u062a \u0627\u0644\u062b\u063a\u0631\u0627\u062a.\n\n[\u0631\u0627\u0628\u0637 \u0627\u0644\u0645\u0634\u0631\u0648\u0639 \u0639\u0644\u0649 GitHub](https://github.com/projectdiscovery/cvemap)\n\nMetaHub\n\nMetaHub \u0647\u0648 \u0623\u062f\u0627\u0629 \u062a\u062d\u0633\u064a\u0646 \u0648\u062a\u0642\u064a\u064a\u0645 \u062a\u0623\u062b\u064a\u0631 \u0627\u0644\u0646\u062a\u0627\u0626\u062c \u0627\u0644\u0623\u0645\u0646\u064a\u0629 \u0627\u0644\u0633\u064a\u0627\u0642\u064a\u0629 \u0648\u0627\u0644\u0645\u0633\u062a\u0646\u062f\u0629 \u0625\u0644\u0649 \u0627\u0644\u0633\u064a\u0627\u0642 \u062a\u0644\u0642\u0627\u0626\u064a\u064b\u0627 \u0644\u0625\u062f\u0627\u0631\u0629 \u0627\u0644\u062b\u063a\u0631\u0627\u062a.\n\n[\u0631\u0627\u0628\u0637 \u0627\u0644\u0645\u0634\u0631\u0648\u0639 \u0639\u0644\u0649 GitHub](https://github.com/gabrielsoltz/metahub)\n\nCLZero\n\n\u0645\u0634\u0631\u0648\u0639 \u0645\u062e\u0635\u0635 \u0644\u0627\u062e\u062a\u0628\u0627\u0631 \u0627\u0644\u062a\u0634\u0648\u064a\u0634 (Fuzzing) \u0639\u0644\u0649 HTTP/1.1 CL.0 \u0644\u0627\u0633\u062a\u0643\u0634\u0627\u0641 \u0647\u062c\u0645\u0627\u062a \u062a\u0634\u0648\u064a\u0634 \u0627\u0644\u0637\u0644\u0628\u0627\u062a.\n\n[\u0631\u0627\u0628\u0637 \u0627\u0644\u0645\u0634\u0631\u0648\u0639 \u0639\u0644\u0649 GitHub](https://github.com/Moopinger/CLZero)\n\nSQLi_Sleeps\n\n\u0647\u0648 \u0633\u0643\u0631\u0628\u062a \u0628\u0633\u064a\u0637 \u064a\u062a\u064a\u062d \u0627\u0644\u0639\u062b\u0648\u0631 \u0639\u0644\u0649 \u062b\u063a\u0631\u0627\u062a SQLi \u0648\u0627\u0644\u062d\u0635\u0648\u0644 \u0639\u0644\u0649 \u0648\u0642\u062a \u0627\u0644\u0627\u0633\u062a\u062c\u0627\u0628\u0629 \u0627\u0644\u0630\u064a \u064a\u0632\u064a\u062f \u0639\u0646 20 \u062b\u0627\u0646\u064a\u0629 \u0641\u064a \u0627\u0644\u0645\u062a\u0648\u0633\u0637 \u0628\u0627\u0633\u062a\u062e\u062f\u0627\u0645 \u062d\u0642\u0646 \u0642\u0627\u0626\u0645\u0629 \u0639\u0644\u0649 \u0627\u0644\u0648\u0642\u062a.\n\n[\u0631\u0627\u0628\u0637 \u0627\u0644\u0645\u0634\u0631\u0648\u0639 \u0639\u0644\u0649 GitHub](https://github.com/HernanRodriguez1/SQLi_Sleeps)\n\n\u0645\u0634\u0631\u0648\u0639 GitHub - p1radup: \u0645\u0639\u0627\u0644\u062c\u0629 \u0639\u0646\u0627\u0648\u064a\u0646 \u0627\u0644\u0648\u064a\u0628 \u0648\u0625\u0632\u0627\u0644\u0629 \u0645\u0639\u0644\u0645\u0627\u062a \u0627\u0644\u0627\u0633\u062a\u0639\u0644\u0627\u0645 \u0627\u0644\u0645\u0643\u0631\u0631\u0629.\n\nhttps://github.com/iambouali/p1radup\n\n\u0625\u062b\u0628\u0627\u062a \u0627\u0644\u0645\u0641\u0647\u0648\u0645 \u0627\u0644\u0645\u0632\u064a\u0641 CVE-2023-40477 \u064a\u0624\u062f\u064a \u0625\u0644\u0649 VenomRAT\n\n\u064a\u0647\u062f\u0641 PoC \u0625\u0644\u0649 \u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u062b\u063a\u0631\u0629 WinRAR:\nLink\n\nPoC + Nuclei + Query CVE-2024-25600 Unauth RCE - WordPress Bricks - 1.9.6 CVSS 9.8\n\nQuery Fofa: body=\"/wp-content/themes/bricks/\"\n\nPOC \n\nNuclei\n\nGitHub - iambouali/p1radup: \u064a\u0639\u0645\u0644 \u0639\u0644\u0649 \u0645\u0639\u0627\u0644\u062c\u0629 \u0639\u0646\u0627\u0648\u064a\u0646 \u0627\u0644\u0648\u064a\u0628 \u0648\u0625\u0632\u0627\u0644\u0629 \u0645\u0639\u0644\u0645\u0627\u062a \u0627\u0644\u0627\u0633\u062a\u0639\u0644\u0627\u0645 \u0627\u0644\u0645\u0643\u0631\u0631\u0629.\n\nhttps://github.com/iambouali/p1radup\n\n\u0645\u0631\u0627\u062c\u0639\u0629: \u0642\u0631\u0627\u0621\u0629 \u062a\u062c\u0631\u0628\u0629 \u0645\u062e\u062a\u0635\u0631\u0629 \u062d\u0648\u0644 \u0627\u062e\u062a\u0631\u0627\u0642 \u0627\u0644\u0623\u0645\u0627\u0646 \u0645\u0646 \u0642\u0628\u0644 \u062e\u0628\u0631\u0627\u0621\n\nhttps://www.hackerone.com/penetration-testing/pentester-ama-recap\n\n\u0631\u0648\u0627\u0628\u0637 \u0639\u0645\u064a\u0642\u0629 \u0648\u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u0627\u0644\u0648\u0627\u062c\u0647\u0627\u062a \u0627\u0644\u0648\u064a\u0628: \u0627\u0644\u062c\u0632\u0621 \u0627\u0644\u0623\u0648\u0644\n\nhttps://medium.com/@justmobilesec/deep-links-webviews-exploitations-part-i-452e8aad124f\n\n\u0628\u0633\u0647\u0648\u0644\u0629\u060c \u0642\u0645 \u0628\u0627\u0644\u062a\u0631\u0642\u064a\u0629 \u0625\u0644\u0649 \u0643\u0644\u0645\u0627\u062a \u0627\u0644\u0645\u0631\u0648\u0631 \u0639\u0644\u0649 \u0647\u0648\u0627\u062a\u0641 Pixel \u0628\u0627\u0633\u062a\u062e\u062f\u0627\u0645 \u0645\u062f\u064a\u0631 \u0643\u0644\u0645\u0627\u062a \u0627\u0644\u0645\u0631\u0648\u0631 \u0645\u0646 Google\n\nhttp://security.googleblog.com/2024/01/upgrade-to-passkeys-on-pixel-with-google-password-manager.html", "creation_timestamp": "2024-06-06T23:32:16.000000Z"}