xray
xray copied to clipboard
Published
20 hours ago •
chaitin
chaitin
【ctstack】POC认领活动
认领 poc 活动通知: 活动时间:2022年1月1日 00:00:00~2022年2月28日23:59:59 参与人员:已在 GitHub 提交 POC 并且审核通过 参与方式: 社区成员在该仓库该ISSUE中评论,提交 GitHub 昵称+CT Stack 昵称+poc序列ID(PR编号). 平台将在2022年3月1日~2022年3月15日审核,并批量迁移poc至CT Stack平台,并将以50金币/篇 poc的奖励发放到各作者CT Stack账户中。
另:为保证运营效率,xray将仅在CT Stack平台收集 poc,但是依然会同步GitHub,具体方案将于近期推出。 每篇 POC 审核通过至少奖励 200 金币;xray.cool 历史活动已下架,已在 GitHub 提交4篇(及以上)poc 但还未兑换高级版的用户请联系微信号:chinaykc(昵称:ykc)、CTStack(昵称:CT Stack) 提交续费申请,审核无误,将按 CT Stack 平台兑换 1 年 xray 高级版的金币补偿给该些用户。
| git昵称 | CT Stack昵称 | poc id |
|---|---|---|
| sharecast | sharecast | glassfish-cve-2017-1000028-lfi.yml |
| sharecast | sharecast | coldfusion-cve-2010-2861-lfi.yml |
| sharecast | sharecast | hadoop-yarn-unauth.yml |
| sharecast | sharecast | samsung-wea453e-default-pwd.yml |
| sharecast | sharecast | samsung-wea453e-rce.yml |
| sharecast | sharecast | sonicwall-ssl-vpn-rce.yml |
| sharecast | sharecast | zabbix-cve-2016-10134-sqli.yml |
| sharecast | sharecast | confluence-cve-2019-3396-lfi.yml |
| sharecast | sharecast | exchange-cve-2021-26855-ssrf.yml |
| sharecast | sharecast | solr-cve-2017-12629-xxe.yml |
| git昵称 | CT Stack昵称 | poc id |
|---|---|---|
| Jarcis-cy | Jarcis-cy | #1373 检测锐捷EG易网关rce |
| Jarcis-cy | Jarcis-cy | #1436 检测cve-2021-40438 |
| Jarcis-cy | Jarcis-cy | #1437 检测cve-2021-3129 |
| git昵称 | CT Stack昵称 | poc id |
|---|---|---|
| For3stCo1d | 林寒 | https://github.com/chaitin/xray/pull/1536 grafana-default-password.yml |
| For3stCo1d | 林寒 | https://github.com/chaitin/xray/pull/1505 pentaho-cve-2021-31602-authentication-bypass.yml |
| For3stCo1d | 林寒 | https://github.com/chaitin/xray/pull/1503 dahua-cve-2021-33044-authentication-bypass.yml |
| For3stCo1d | 林寒 | https://github.com/chaitin/xray/pull/1479 qilin-bastion-host-rce.yml |
| For3stCo1d | 林寒 | https://github.com/chaitin/xray/pull/1487 gocd-cve-2021-43287.yml |
| For3stCo1d | 林寒 | https://github.com/chaitin/xray/pull/1545 vmware-vcenter-lfi-ssrf.yml |
| For3stCo1d | 林寒 | https://github.com/chaitin/xray/pull/1524 metabase-cve-2021-41277-info-leak.yml |
| For3stCo1d | 林寒 | https://github.com/chaitin/xray/pull/1519 zoho-cve-2021-40539-rce.yml |
| For3stCo1d | 林寒 | https://github.com/chaitin/xray/pull/1517 apache-shenyu-cve-2021-37580-authentication-bypass.yml |
| For3stCo1d | 林寒 | https://github.com/chaitin/xray/pull/1463 springboot-h2-db-rce.yml |
| git昵称 | CT Stack昵称 | poc id |
|---|---|---|
| nu0l | iak3ec | #1453 poc-yaml-apache-druid-cve-2021-36749 |
| nu0l | iak3ec | #1465 poc-yml-h5s-video-platform-unauth |
| nu0l | iak3ec | #1472 poc-yaml-secnet-ac-default-password |
| nu0l | iak3ec | #1473 jiner-oa-c6-default-password |
| nu0l | iak3ec | #1474 poc-yaml-kingdee-directory-traversal |
| git昵称 | CT Stack昵称 | poc id |
|---|---|---|
| x1n9Qi8 | x1n9Qi8 | #897 sangfor-edr-unauthorized-rce |
| x1n9Qi8 | x1n9Qi8 | #905 dlink-cve-2020-9376-dump-credentials |
| x1n9Qi8 | x1n9Qi8 | #974 craftcms-seomatic-cve-2020-9757-rce |
| x1n9Qi8 | x1n9Qi8 | #998 zeit-nodejs-cve-2020-5284-directory-traversal |
| x1n9Qi8 | x1n9Qi8 | #1009 seeyon-ajax-unauthorized-access |
| git昵称 | CT Stack昵称 | poc id |
|---|---|---|
| Pa55w0rd | Pa55w0rd | https://github.com/chaitin/xray/pull/1034 |
| Pa55w0rd | Pa55w0rd | https://github.com/chaitin/xray/pull/1033 |
| Pa55w0rd | Pa55w0rd | https://github.com/chaitin/xray/pull/1024 |
| Pa55w0rd | Pa55w0rd | https://github.com/chaitin/xray/pull/1014 |
| Pa55w0rd | Pa55w0rd | https://github.com/chaitin/xray/pull/995 |
| Pa55w0rd | Pa55w0rd | https://github.com/chaitin/xray/pull/991 |
| Pa55w0rd | Pa55w0rd | https://github.com/chaitin/xray/pull/989 |
| Pa55w0rd | Pa55w0rd | https://github.com/chaitin/xray/pull/980 |
| Pa55w0rd | Pa55w0rd | https://github.com/chaitin/xray/pull/659 |
| git昵称 | CT Stack昵称 | poc id |
|---|---|---|
| MaxSecurity | 太白。 | seacms-sqli.yml |
| MaxSecurity | 太白。 | sflink-jobmanager-cve-2020-17519-lfi.yml |
| MaxSecurity | 太白。 | jira-cve-2019-8449.yml |
| MaxSecurity | 太白。 | ecology-syncuserinfo-sqli.yml |
| MaxSecurity | 太白。 | etouch-v2-sqli.yml |
| MaxSecurity | 太白。 | zcms-v3-sqli.yml |
| MaxSecurity | 太白。 | ruoyi-management-fileread.yml |
| git昵称 | CT Stack昵称 | poc id |
|---|---|---|
| bxlxx | bxlxx.wu | https://github.com/chaitin/xray/pull/495 |
| git昵称 | CT Stack昵称 | poc id |
|---|---|---|
| canc3s | admin | #69 nuuo-file-inclusion.yml |
| canc3s | admin | #410 weblogic-cve-2019-2729-1.yml |
| canc3s | admin | #410 weblogic-cve-2019-2729-2.yml |
| canc3s | admin | #410 weblogic-ssrf.yml |
| canc3s | admin | #410 weblogic12-cve-2019-2725.yml |
| canc3s | admin | #410 weblogic10-cve-2019-2725.yml |
| canc3s | admin | #917 weblogic-cve-2020-14750.yml |
| canc3s | admin | #948 seeyon-wooyun-2015-148227.yml |
| canc3s | admin | #957 kibana-cve-2018-17246.yml |
| git昵称 | CT Stack昵称 | poc id |
|---|---|---|
| YekkoY | YekkoY | #1313 mpsec-isg1000-file-read.yml |
| YekkoY | YekkoY | #1291 netentsec-ngfw-rce.yml |
| YekkoY | YekkoY | #1283 amtt-hiboss-rce.yml |
| YekkoY | YekkoY | #1282 him-directory-file-leak.yml |
| YekkoY | YekkoY | #1254 zeroshell-firewall-rce |
| YekkoY | YekkoY | #1236 ns-asg-file-read |
| git昵称 | CT Stack昵称 | poc id |
|---|---|---|
| kzaopa | kzaopa | #1160 dlink-cve-2020-25078-account-disclosure.yml |
| kzaopa | kzaopa | #1199 kingsoft-v8-file-read.yml |
| kzaopa | kzaopa | #1201 hanming-video-vonferencing-file-read.yml |
| kzaopa | kzaopa | #1204 tongda-user-session-disclosure.yml |
| kzaopa | kzaopa | #1202 yongyou-u8-oa-sqli.yml |
| git昵称 | CT Stack昵称 | poc id |
|---|---|---|
| albertchang | albertchang | terramaster-cve-2020-15568.yml |
| git昵称 | CT Stack昵称 | poc id |
|---|---|---|
| mumu0215 | half90 | #1216 |
| mumu0215 | half90 | #1338 |
| mumu0215 | half90 | #1229 |
| mumu0215 | half90 | #1230 |
| git昵称 | CT Stack昵称 | poc id |
|---|---|---|
| Soveless | Soveless | #754 |
| Soveless | Soveless | #755 |
| Soveless | Soveless | #778 |
| Soveless | Soveless | #790 |
| Soveless | Soveless | #808 |
| Soveless | Soveless | #822 |
| Soveless | Soveless | #917 |
| git昵称 | CT Stack昵称 | poc id |
|---|---|---|
| we1x4n | we1x4n | izhi-fortressaircraft-unauthorized.yml |
| we1x4n | we1x4n | saltstack-cve-2020-16846.yml |
| we1x4n | we1x4n | razor-cve-2018-8770.yml |
| we1x4n | we1x4n | couchcms-cve-2018-7662.yml |
| we1x4n | we1x4n | pyspider-unauthorized-access.yml |
git昵称 CT Stack昵称 poc id shmilylty 精灵 #438 shmilylty 精灵 #444 shmilylty 精灵 #456 shmilylty 精灵 #461 shmilylty 精灵 #466 shmilylty 精灵 #468 shmilylty 精灵 #472 shmilylty 精灵 #473 shmilylty 精灵 #656 shmilylty 精灵 #657 shmilylty 精灵 #658 shmilylty 精灵 #660 shmilylty 精灵 #669 shmilylty 精灵 #794 shmilylty 精灵 #797 shmilylty 精灵 #814 shmilylty 精灵 #815 shmilylty 精灵 #825 shmilylty 精灵 #1053 shmilylty 精灵 #1169 shmilylty 精灵 #1171 shmilylty 精灵 #1176 shmilylty 精灵 #1423
| git昵称 | CT Stack昵称 | poc id |
|---|---|---|
| harris2015 | VIP | jira-cve-2020-14179 |
| harris2015 | VIP | dedecms-membergroup-sqli |
| harris2015 | VIP | dedecms-cve-2018-7700-rce |
| harris2015 | VIP | dedecms-carbuyaction-fileinclude |
| harris2015 | VIP | dedecms-guestbook-sqli |
| harris2015 | VIP | jira-cve-2019-11581 |
| harris2015 | VIP | minio-default-password |
| git昵称 | CT Stack昵称 | poc id |
|---|---|---|
| B1anda0 | B1anda0 | citrix-xenmobile-cve-2020-8209 |
| B1anda0 | B1anda0 | vmware-vcenter-unauthorized-rce-cve-2021-21972 |
| B1anda0 | B1anda0 | rockmongo-default-password |
| B1anda0 | B1anda0 | kingsoft-v8-default-password |
| B1anda0 | B1anda0 | kyan-network-monitoring-account-password-leakage |
| B1anda0 | B1anda0 | telecom-gateway-default-password |
| B1anda0 | B1anda0 | showdoc-default-password |
| B1anda0 | B1anda0 | panabit-ixcache-default-password |
| B1anda0 | B1anda0 | nsicg-default-password |
| B1anda0 | B1anda0 | landray-oa-fileread |
| B1anda0 | B1anda0 | jeewms-showordownbyurl-fileread |
| B1anda0 | B1anda0 | huijietong-cloud-video-platform-fileread |
| B1anda0 | B1anda0 | huawei-home-gateway-hg659-fileread |
| B1anda0 | B1anda0 | yonyou-nc-bsh-servlet-bshservlet-rce |
| B1anda0 | B1anda0 | apache-httpd-cve-2021-41773-rce |
| github昵称 | CT Stack昵称 | poc id |
|---|---|---|
| Print1n | 爱哭的毛毛虫 | #1366 |
| Print1n | 爱哭的毛毛虫 | #1374 |
| Print1n | 爱哭的毛毛虫 | #1375 |
| Print1n | 爱哭的毛毛虫 | #1376 |
| Print1n | 爱哭的毛毛虫 | #1372 |
| Print1n | 爱哭的毛毛虫 | #1353 |
| Print1n | 爱哭的毛毛虫 | #1368 |
| Print1n | 爱哭的毛毛虫 | #1364 |
| Print1n | 爱哭的毛毛虫 | #1361 |
| Print1n | 爱哭的毛毛虫 | #1322 |
| Print1n | 爱哭的毛毛虫 | #1296 |
| Print1n | 爱哭的毛毛虫 | #1295 |
| Print1n | 爱哭的毛毛虫 | #1259 |
| Print1n | 爱哭的毛毛虫 | #1317 |
| Print1n | 爱哭的毛毛虫 | #1300 |
| Print1n | 爱哭的毛毛虫 | #1316 |
| Print1n | 爱哭的毛毛虫 | #1253 |
| Print1n | 爱哭的毛毛虫 | #1249 |
| github昵称 | CT Stack昵称 | poc id |
|---|---|---|
| x7iaob | xiao1hu | frp-dashboard-unauth.yml |
| x7iaob | xiao1hu | nps-default-password.yml |
| x7iaob | xiao1hu | springboot-env-unauth.yml |
| x7iaob | xiao1hu | dotnetcms-sqli.yml |
| github昵称 | CT Stack昵称 | poc id |
|---|---|---|
| sakura404x | YooReeA | https://github.com/chaitin/xray/pull/1417 |
| sakura404x | YooReeA | https://github.com/chaitin/xray/pull/1106 |
| sakura404x | YooReeA | https://github.com/chaitin/xray/pull/1078 |
| sakura404x | YooReeA | https://github.com/chaitin/xray/pull/1075 |
| sakura404x | YooReeA | https://github.com/chaitin/xray/pull/1074 |
| sakura404x | YooReeA | https://github.com/chaitin/xray/pull/1072 |
| github昵称 | CT Stack昵称 | poc id |
|---|---|---|
| jweny | jweny | #1192 |
| jweny | jweny | #1118 |
| jweny | jweny | #1116 |
| jweny | jweny | #1075 |
| git昵称 | CT Stack昵称 | poc id |
|---|---|---|
| fupinglee | 浮萍 | #613 |
| fupinglee | 浮萍 | #622 |
| fupinglee | 浮萍 | #641 |
