GitHub - jenaye/CVE-repository: Repository of CVE found by OCD people

OCD CVE Repository

The table of CVE registered by people working for OCD:

CVE ID / Advisory	EDB ID / Exploit	Type	Product	Author(s)
CVE-2020-25287	PoC	Authenticated RCE	Pligg 2.0.3	Mike HOUZIAUX
CVE-2020-17454	PoC	Self XSS	WSO2 API Manager: 3.1.0 or earlier	Zakaria BRAHIMI
CVE-2020-14950	PoC	Authenticated RCE	aapanel 6.6.6	Mike HOUZIAUX
CVE-2020-14462	PoC	Authenticated reflected XSS	Caldera 2.7.0	Aurélien CHALOT
CVE-2020-14421	PoC	Authenticated RCE	aapanel 6.6.6	Mike HOUZIAUX
CVE-2020-14295	PoC	Authenticated RCE (from SQLi)	cacti (1.2.7, 1.2.12)	Cyril SERVIERES
CVE-2020-14146	PoC	XSS (Reflected)	KumbiaPHP 1.1.1	Mike HOUZIAUX
CVE-2020-11712	PoC	XSS (Reflected)	Openupload 0.4.3	Mike HOUZIAUX
CVE-2020-10787	PoC	Root EoP	VestaCP 0.9.8-26	Alexandre ZANNI
CVE-2020-10786	PoC	Authenticated RCE	VestaCP 0.9.8-26	Alexandre ZANNI
CVE-2020-10220	48208	Unauthenticated SQLi	rConfig < 3.9.4	Jean-Pascal THOMAS
CVE-2020-8776 CVE-2020-8777 CVE-2020-8778	48162	Stored XSS	Alfresco 5.2.4	Alexandre ZANNI Romain LOISEL
CVE-2020-1949	PoC	Reflected XSS	Sling CMS App 0.14.0 and previous releases	Guillaume GRABÉ
CVE-2019-19585	PoC	Root LPE	rConfig < 3.9.4	Jean-Pascal THOMAS
CVE-2019-19509	47982	Authenticated RCE	rConfig < 3.9.4	Jean-Pascal THOMAS
CVE-2019-15253	48459	Stored XSS	Cisco DNAC 1.3	Dylan GARNAUD Benoit MALABOEUF
CVE-2019-13029	47146	Stored XSS	REDCap 8.10/9.1	Alexandre ZANNI Dylan GARNAUD

Note: the table is sorted by CVE ID.

Name		Name	Last commit message	Last commit date
Latest commit History 24 Commits
PoCs		PoCs
README.md		README.md
_config.yml		_config.yml

Provide feedback