This repository contains a professional write-up of a path traversal vulnerability discovered in InvenTree's report template engine. This vulnerability was patched in versions 1.2.6 and 1.3.0.

VeryLazyAI - Free AI Tools Directory

CVE-2025-64446 - A relative path traversal vulnerability in Fortinet FortiWeb 8.0.0 through 8.0.1, FortiWeb 7.6.0 through 7.6.4, FortiWeb 7.4.0 through 7.4.9, FortiWeb 7.2.0 through 7.2.11, FortiWe…

Burpsuite Professional Latest Version 2026

A comprehensive collection of resources, tools, tips, and guides for preparing and succeeding in the OSCP (Offensive Security Certified Professional) certification.

POC - Unauthenticated RCE Flaw in Rejetto HTTP File Server - CVE-2024-23692

A comprehensive collection of resources, tools, tips, and guides for preparing and succeeding in the OSCP (Offensive Security Certified Professional) certification.

A collection of intentionally vulnerable WordPress plugins and themes for security testing, research, and training purposes.

A comprehensive collection of resources, tools, tips, and guides for preparing and succeeding in the OSCP (Offensive Security Certified Professional) certification.

A comprehensive collection of resources, tools, tips, and guides for preparing and succeeding in the OSCP (Offensive Security Certified Professional) certification.

Top Hacking Books for 2024 (plus Resources): FREE and Paid

Top Hacking Books for 2024 (plus Resources): FREE and Paid

A comprehensive collection of resources, tools, tips, and guides for preparing and succeeding in the OSCP (Offensive Security Certified Professional) certification.

A comprehensive collection of resources, tools, tips, and guides for preparing and succeeding in the OSCP (Offensive Security Certified Professional) certification.

POC - CVE-2024-21534 Jsonpath-plus vulnerable to Remote Code Execution (RCE) due to improper input sanitization

Top Hacking Books for 2024 (plus Resources): FREE and Paid

File Away <= 3.9.9.0.1 - Missing Authorization to Unauthenticated Arbitrary File Read

This repository demonstrates various web security vulnerabilities with Python code examples. Each folder contains a vulnerability demonstration along with an explanation and a fixed version of the …

The Ultimate Tool for Recon in Bug Bounty Hunting

Google Dorks for Bug Bounty

POC - WordPress File Upload plugin, in the wfu_file_downloader.php file before version <= 4.24.11

A comprehensive collection of resources, tools, tips, and guides for preparing and succeeding in the OSCP (Offensive Security Certified Professional) certification.

A comprehensive collection of resources, tools, tips, and guides for preparing and succeeding in the OSCP (Offensive Security Certified Professional) certification.

POC - Jenkins File Read Vulnerability - CVE-2024-23897

Top Hacking Books for 2024 (plus Resources): FREE and Paid

CVE-2024-50623 POC - Cleo Unrestricted file upload and download