Soerlemans soerlemans

Compiler and Systems programming enthusiast.

22 followers · 23 following

Zimperium
Amsterdam
12:58 (UTC +02:00)
https://forestofunix.com

View GitHub Profile

Recently created

Least recently created

Recently updated

Least recently updated

gmh5225 / CVE-2023-41892-POC.md

Created September 24, 2023 15:32 — forked from to016/CVE-2023-41892-POC.md

CVE-2023-41892 (Craft CMS Remote Code Execution) - POC

This Gist provides a Proof-of-Concept (POC) for CVE-2023-41892, a Craft CMS vulnerability that allows Remote Code Execution (RCE).

Overview

CVE-2023-41892 is a security vulnerability discovered in Craft CMS, a popular content management system. Craft CMS versions affected by this vulnerability allow attackers to execute arbitrary code remotely, potentially compromising the security and integrity of the application.

POC

import requests

mccabe615 / phpdangerousfuncs.md

Last active March 15, 2026 15:53

Dangerous PHP Functions

Command Execution

exec           - Returns last line of commands output
passthru       - Passes commands output directly to the browser
system         - Passes commands output directly to the browser and returns last line
shell_exec     - Returns commands output
\`\` (backticks) - Same as shell_exec()
popen          - Opens read or write pipe to process of a command
proc_open      - Similar to popen() but greater degree of control
pcntl_exec - Executes a program