├── 2019巅峰极客_web_lol_源码 ├── app │ ├── controller │ │ ├── Files.class.php │ │ └── IndexController.class.php │ ├── model │ │ └── Download.class.php │ └── view │ │ └── Cache.class.php ├── core │ ├── config.php │ ├── core.php │ └── func.php └── index.php ├── Chrome RCE ├── Installer │ └── 89.0.4389.72_chrome_installer.exe ├── pic │ ├── pic0.png │ ├── pic1.png │ └── pic2.png └── readme.md ├── Django漏洞复现 ├── CVE-2018-14574 │ ├── 1.png │ ├── Dockerfile │ ├── README.md │ ├── app.py │ └── docker-compose.yml ├── CVE-2019-14234 │ ├── 1.png │ ├── 2.png │ ├── Dockerfile │ ├── README.md │ ├── docker-compose.yml │ ├── docker-entrypoint.sh │ └── src │ │ ├── collection.json │ │ ├── cve201914234 │ │ ├── __init__.py │ │ ├── settings.py │ │ ├── urls.py │ │ └── wsgi.py │ │ ├── manage.py │ │ └── vuln │ │ ├── __init__.py │ │ ├── admin.py │ │ ├── apps.py │ │ ├── migrations │ │ ├── 0001_initial.py │ │ └── __init__.py │ │ └── models.py └── CVE-2020-9402 │ ├── 1.png │ ├── 2.png │ ├── Dockerfile │ ├── README.md │ ├── docker-compose.yml │ ├── docker-entrypoint.sh │ └── src │ ├── CVE20209402 │ ├── __init__.py │ ├── settings.py │ ├── urls.py │ └── wsgi.py │ ├── collection.json │ ├── manage.py │ └── vuln │ ├── __init__.py │ ├── admin.py │ ├── apps.py │ ├── migrations │ └── __init__.py │ ├── models.py │ ├── tests.py │ └── views.py ├── HITCON2017 Baby^H Master PHP_镜像 ├── Dockerfile ├── README.md ├── avatar-1.gif ├── avatar.gif ├── fork.py ├── index.php ├── read_secret ├── readflag └── run.sh ├── PHP漏洞复现 ├── CVE-2019-11043 │ ├── 1.png │ ├── 2.png │ ├── README.md │ ├── default.conf │ ├── docker-compose.yml │ └── www │ │ └── index.php ├── inclusion │ ├── 1.png │ ├── 2.png │ ├── README.md │ ├── README.zh-cn.md │ ├── docker-compose.yml │ ├── exp.py │ └── www │ │ ├── lfi.php │ │ └── phpinfo.php ├── php_xxe │ ├── 1.png │ ├── README.md │ ├── docker-compose.yml │ └── www │ │ ├── SimpleXMLElement.php │ │ ├── dom.php │ │ ├── index.php │ │ └── simplexml_load_string.php └── xdebug-rce │ ├── 1.png │ ├── Dockerfile │ ├── README.md │ ├── docker-compose.yml │ ├── exp.py │ └── index.php ├── Python漏洞 ├── Flask-SSTI │ ├── 1.png │ ├── README.md │ ├── docker-compose.yml │ └── src │ │ └── app.py └── unpickle 代码执行 │ ├── 1.png │ ├── Dockerfile │ ├── README.md │ ├── app.py │ ├── docker-compose.yml │ ├── exp.py │ └── requirements.txt ├── README.md ├── Spark未授权访问RCE ├── README.md └── docker-compose.yml ├── Spring漏洞复现 ├── CVE-2016-4977 │ └── docker-compose.yml ├── CVE-2017-4971 │ └── docker-compose.yml ├── CVE-2017-8046 │ └── docker-compose.yml ├── CVE-2018-1270 │ └── docker-compose.yml └── CVE-2018-1273 │ └── docker-compose.yml ├── Thinkphp漏洞复现 ├── 5-rce │ ├── 1.png │ ├── README.md │ └── docker-compose.yml └── 5.0.23-rce │ ├── 1.png │ ├── README.md │ └── docker-compose.yml └── Weblogic漏洞复现 ├── CVE-2017-10271 ├── 1.png ├── README.md └── docker-compose.yml ├── CVE-2018-2628 ├── 1.png ├── README.md └── docker-compose.yml ├── CVE-2018-2894 ├── README.md ├── docker-compose.yml └── img │ ├── 1.png │ ├── 2.png │ ├── 3.png │ ├── 4.png │ └── 5.png ├── ssrf ├── 1.png ├── 2.png ├── 3.png ├── 4.png ├── 5.png ├── README.md └── docker-compose.yml └── weak_password ├── README.md ├── decrypt ├── lib │ └── bcprov-jdk15on-152.jar └── weblogic_decrypt.jar ├── docker-compose.yml ├── img ├── 01.png ├── 02.png ├── 03.png ├── 04.png ├── 05.png ├── 06.png ├── 07.png └── 08.png └── web └── hello.war /2019巅峰极客_web_lol_源码/app/controller/Files.class.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/2019巅峰极客_web_lol_源码/app/controller/Files.class.php -------------------------------------------------------------------------------- /2019巅峰极客_web_lol_源码/app/controller/IndexController.class.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/2019巅峰极客_web_lol_源码/app/controller/IndexController.class.php -------------------------------------------------------------------------------- /2019巅峰极客_web_lol_源码/app/model/Download.class.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/2019巅峰极客_web_lol_源码/app/model/Download.class.php -------------------------------------------------------------------------------- /2019巅峰极客_web_lol_源码/app/view/Cache.class.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/2019巅峰极客_web_lol_源码/app/view/Cache.class.php -------------------------------------------------------------------------------- /2019巅峰极客_web_lol_源码/core/config.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/2019巅峰极客_web_lol_源码/core/config.php -------------------------------------------------------------------------------- /2019巅峰极客_web_lol_源码/core/core.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/2019巅峰极客_web_lol_源码/core/core.php -------------------------------------------------------------------------------- /2019巅峰极客_web_lol_源码/core/func.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/2019巅峰极客_web_lol_源码/core/func.php -------------------------------------------------------------------------------- /2019巅峰极客_web_lol_源码/index.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/2019巅峰极客_web_lol_源码/index.php -------------------------------------------------------------------------------- /Chrome RCE/Installer/89.0.4389.72_chrome_installer.exe: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Chrome RCE/Installer/89.0.4389.72_chrome_installer.exe -------------------------------------------------------------------------------- /Chrome RCE/pic/pic0.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Chrome RCE/pic/pic0.png -------------------------------------------------------------------------------- /Chrome RCE/pic/pic1.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Chrome RCE/pic/pic1.png -------------------------------------------------------------------------------- /Chrome RCE/pic/pic2.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Chrome RCE/pic/pic2.png -------------------------------------------------------------------------------- /Chrome RCE/readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Chrome RCE/readme.md -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2018-14574/1.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2018-14574/1.png -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2018-14574/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2018-14574/Dockerfile -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2018-14574/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2018-14574/README.md -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2018-14574/app.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2018-14574/app.py -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2018-14574/docker-compose.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2018-14574/docker-compose.yml -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2019-14234/1.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2019-14234/1.png -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2019-14234/2.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2019-14234/2.png -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2019-14234/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2019-14234/Dockerfile -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2019-14234/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2019-14234/README.md -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2019-14234/docker-compose.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2019-14234/docker-compose.yml -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2019-14234/docker-entrypoint.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2019-14234/docker-entrypoint.sh -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2019-14234/src/collection.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2019-14234/src/collection.json -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2019-14234/src/cve201914234/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2019-14234/src/cve201914234/settings.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2019-14234/src/cve201914234/settings.py -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2019-14234/src/cve201914234/urls.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2019-14234/src/cve201914234/urls.py -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2019-14234/src/cve201914234/wsgi.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2019-14234/src/cve201914234/wsgi.py -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2019-14234/src/manage.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2019-14234/src/manage.py -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2019-14234/src/vuln/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2019-14234/src/vuln/admin.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2019-14234/src/vuln/admin.py -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2019-14234/src/vuln/apps.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2019-14234/src/vuln/apps.py -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2019-14234/src/vuln/migrations/0001_initial.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2019-14234/src/vuln/migrations/0001_initial.py -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2019-14234/src/vuln/migrations/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2019-14234/src/vuln/models.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2019-14234/src/vuln/models.py -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2020-9402/1.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2020-9402/1.png -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2020-9402/2.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2020-9402/2.png -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2020-9402/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2020-9402/Dockerfile -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2020-9402/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2020-9402/README.md -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2020-9402/docker-compose.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2020-9402/docker-compose.yml -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2020-9402/docker-entrypoint.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2020-9402/docker-entrypoint.sh -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2020-9402/src/CVE20209402/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2020-9402/src/CVE20209402/settings.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2020-9402/src/CVE20209402/settings.py -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2020-9402/src/CVE20209402/urls.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2020-9402/src/CVE20209402/urls.py -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2020-9402/src/CVE20209402/wsgi.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2020-9402/src/CVE20209402/wsgi.py -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2020-9402/src/collection.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2020-9402/src/collection.json -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2020-9402/src/manage.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2020-9402/src/manage.py -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2020-9402/src/vuln/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2020-9402/src/vuln/admin.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2020-9402/src/vuln/admin.py -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2020-9402/src/vuln/apps.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2020-9402/src/vuln/apps.py -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2020-9402/src/vuln/migrations/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2020-9402/src/vuln/models.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2020-9402/src/vuln/models.py -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2020-9402/src/vuln/tests.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2020-9402/src/vuln/tests.py -------------------------------------------------------------------------------- /Django漏洞复现/CVE-2020-9402/src/vuln/views.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/Django漏洞复现/CVE-2020-9402/src/vuln/views.py -------------------------------------------------------------------------------- /HITCON2017 Baby^H Master PHP_镜像/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/HITCON2017 Baby^H Master PHP_镜像/Dockerfile -------------------------------------------------------------------------------- /HITCON2017 Baby^H Master PHP_镜像/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/HITCON2017 Baby^H Master PHP_镜像/README.md -------------------------------------------------------------------------------- /HITCON2017 Baby^H Master PHP_镜像/avatar-1.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/HITCON2017 Baby^H Master PHP_镜像/avatar-1.gif -------------------------------------------------------------------------------- /HITCON2017 Baby^H Master PHP_镜像/avatar.gif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/HITCON2017 Baby^H Master PHP_镜像/avatar.gif -------------------------------------------------------------------------------- /HITCON2017 Baby^H Master PHP_镜像/fork.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/HITCON2017 Baby^H Master PHP_镜像/fork.py -------------------------------------------------------------------------------- /HITCON2017 Baby^H Master PHP_镜像/index.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/HITCON2017 Baby^H Master PHP_镜像/index.php -------------------------------------------------------------------------------- /HITCON2017 Baby^H Master PHP_镜像/read_secret: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/HITCON2017 Baby^H Master PHP_镜像/read_secret -------------------------------------------------------------------------------- /HITCON2017 Baby^H Master PHP_镜像/readflag: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/HITCON2017 Baby^H Master PHP_镜像/readflag -------------------------------------------------------------------------------- /HITCON2017 Baby^H Master PHP_镜像/run.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/HITCON2017 Baby^H Master PHP_镜像/run.sh -------------------------------------------------------------------------------- /PHP漏洞复现/CVE-2019-11043/1.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/PHP漏洞复现/CVE-2019-11043/1.png -------------------------------------------------------------------------------- /PHP漏洞复现/CVE-2019-11043/2.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/PHP漏洞复现/CVE-2019-11043/2.png -------------------------------------------------------------------------------- /PHP漏洞复现/CVE-2019-11043/README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/PHP漏洞复现/CVE-2019-11043/README.md -------------------------------------------------------------------------------- /PHP漏洞复现/CVE-2019-11043/default.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/PHP漏洞复现/CVE-2019-11043/default.conf -------------------------------------------------------------------------------- /PHP漏洞复现/CVE-2019-11043/docker-compose.yml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/xiaoZ-hc/Vulnerability-Repository/HEAD/PHP漏洞复现/CVE-2019-11043/docker-compose.yml -------------------------------------------------------------------------------- /PHP漏洞复现/CVE-2019-11043/www/index.php: -------------------------------------------------------------------------------- 1 |