passtheticket

6 exploits Active since Dec 2020
CVE-2024-43609 GITHUB MEDIUM html WORKING POC
Microsoft 365 Apps and Office - Exposure of Sensitive Information via Spoofing
Microsoft Office Spoofing Vulnerability
146 stars
CVSS 6.5
CVE-2024-38200 NOMISEC MEDIUM WORKING POC
Microsoft 365 Apps and Office - Exposure of Sensitive Information via Spoofing
Microsoft Office Spoofing Vulnerability
146 stars
CVSS 6.5
CVE-2024-24409 NOMISEC HIGH WRITEUP
ManageEngine ADManager Plus <= 7203 - Privilege Escalation via Modify Computers Option
Zohocorp ManageEngine ADManager Plus versions 7203 and prior are vulnerable to Privilege Escalation in the Modify Computers option.
1 stars
CVSS 8.8
CVE-2025-9435 NOMISEC MEDIUM WRITEUP
Zohocorp ManageEngine ADManager Plus <7230 - Path Traversal
Zohocorp ManageEngine ADManager Plus versions below 7230 are vulnerable to Path Traversal in the User Management module
CVSS 5.5
CVE-2020-35850 WRITEUP MEDIUM WRITEUP
Cockpit 234 - Server-Side Request Forgery
An SSRF issue was discovered in cockpit-project.org Cockpit 234. NOTE: this is unrelated to the Agentejo Cockpit product. NOTE: the vendor states "I don't think [it] is a big real-life issue.
CVSS 6.5
CVE-2023-31492 WRITEUP MEDIUM WRITEUP
Zoho ManageEngine ADManager Plus <7182 - Info Disclosure
Zoho ManageEngine ADManager Plus version 7182 and prior disclosed the default passwords for the account restoration of unauthorized domains to the authenticated users.
CVSS 6.5