CVE-2023-42793

presentation report 2023 Nuclei githubcom/projectdiscovery/nuclei Nuclei templates PD githubcom/projectdiscovery/nuclei-templates Cent githubcom/xm1k3/cent​ Guide to Finding Bugs With Nuclei blogprojectdiscoveryio/ultimate-nuclei-guide/ Run Nuclei & other ProjectDiscovery tools in Docker blogprojectdiscoveryio/how-to-run-

CVE-2023-42793 Exploit Script Overview This script is designed to automate the exploitation process for the CVE-2023-42793 vulnerability It targets a specific service (presumably affected by this vulnerability) and attempts to delete a user token, create a new user token, and then create a new user with administrative privileges Requirements Python 3 Libraries: requests, ran

JetBrains TeamCity Authentication Bypass CVE-2023-42793 Exploit

TeamCity CVE-2023-42793 Exploit This Python script exploits a security vulnerability (CVE-2023-42793) in JetBrains TeamCity, allowing an attacker to create a new user with administrative privileges Usage The script takes either a single TeamCity instance URL or a list of URLs as input The provided URL(s) should point to the TeamCity server(s) that are vulnerable to CVE-2023-

presentation report 2023 Nuclei githubcom/projectdiscovery/nuclei Nuclei templates PD githubcom/projectdiscovery/nuclei-templates Cent githubcom/xm1k3/cent​ Guide to Finding Bugs With Nuclei blogprojectdiscoveryio/ultimate-nuclei-guide/ Run Nuclei & other ProjectDiscovery tools in Docker blogprojectdiscoveryio/how-to-run-

PoC of CVE-2023-42793

CVE-2023-42793 For educational purposes only PoC for CVE-2023-42793 Usage CVE-2023-42793_adminsh: chmod +x CVE-2023-42793_adminsh /CVE-2023-42793_adminsh {ip/domain_name} {port} Proof of working: Usage CVE-2023-42793_rcesh: chmod +x CVE-2023-42793_rcesh /CVE-2023-42793_rcesh {ip/domain_name} {port} {command}

Runner githubcom/H454NSec/CVE-2023-42793 nitrocorg/en/posts/cve-2024-21626-illustrated/#exploit-via-setting-working-directory-to-procselffdfd docsportainerio/user/docker/volumes/add

TeamCity post-exploitation enumeration tool

TeamCity Post-Exploitation This tool makes enumerating a box running TeamCity Server after successful exploitation easier It is meant to be ran locally on a target machine for example after a successful exploitation of CVE-2023-42793 Usage $ git clone githubcom/brun0ne/teamcity-enum $ cd teamcity-enum $ bash teamcity-enumsh Fea

JetBrains TeamCity Unauthenticated Remote Code Execution - Python3 Implementation

CVE-2023-42793-POC JetBrains TeamCity Unauthenticated Remote Code Execution - Python3 Implementation

JetBrains TeamCity Unauthenticated Remote Code Execution - Python3 Implementation

CVE-2023-42793 JetBrains TeamCity before 2023054 is vulnerable to authentication bypass leading to RCE Usage To get a reverse shell python3 exploitpy <target_url> <listener_ip> <listener_port> References blogjetbrainscom/teamcity/2023/09/cve-2023-42793-vulnerability-post-mortem/ http:/

JetBrains TeamCity 2023.05.3 - Remote Code Execution (RCE)

CVE-2023-42793 JetBrains TeamCity 2023053 - Remote Code Execution (RCE)

Just for fun

CVE-2023-42793 Just for fun