Skip to content

Instantly share code, notes, and snippets.

View Argonx21's full-sized avatar

Gaurish Kauthankar Argonx21

View GitHub Profile
@Argonx21
Argonx21 / CVE-2023-24516.md
Last active October 15, 2023 15:47
CVE-2023-24516

CVE-2023-24516

# Vulnerability Title: Stored Cross Site Scripting - Special Days Module
# Vendor Homepage: https://pandorafms.com/en/
# Version: <= v767
# CVE: CVE-2023-24516
# CVSS 3.1: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N (5.4 Medium)
# Exploit Author: Gaurish Kauthankar
# Date: 22/08/2023

@Argonx21
Argonx21 / CVE-2023-24517.md
Last active October 15, 2023 15:33
CVE-2023-24517

CVE-2023-24517

# Vulnerability Title: Remote Code Execution via Unrestricted File Upload
# Vendor Homepage: https://pandorafms.com/en/
# Version: <= v767
# CVE: CVE-2023-24517
# CVSS 3.1: CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:L (6.4 Medium)
# Exploit Author: Gaurish Kauthankar
# Date: 22/08/2023

<html>
<body>
<h1>LOL</h1>
</body>
</html>
@Argonx21
Argonx21 / index.html
Last active March 29, 2023 23:58
Testing for bl.ocks.org
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>Document</title>
</head>
<body>
<a href="http://evil.com">Click me Please....</a>