CVE-2019-16097

The PoC exploits CVE-2019-16097 in Harbor by sending a crafted JSON payload to the `/api/users` endpoint, allowing an attacker to create an admin account. The script checks for a 201 status code to confirm vulnerability.

The repository contains a functional Python script that exploits CVE-2019-16097, an arbitrary admin registration vulnerability in Harbor. The script sends a crafted POST request to create an admin account without authentication.

This repository contains a functional exploit for CVE-2019-16097, an unauthenticated privilege escalation vulnerability in Harbor. The PoC leverages the Harbor API to create an admin user without authentication, demonstrating the vulnerability's impact.

This repository contains a functional exploit for CVE-2019-16097, which allows unauthenticated user creation via a POST request to the `/api/users` endpoint. The script automates the process by reading target URLs from a file and writing results to an output file.

The repository contains a functional Python script that exploits CVE-2019-16097, an arbitrary admin registration vulnerability in Harbor. The script sends a crafted POST request to create an admin account without authentication.

This repository contains a functional exploit for CVE-2019-16097, which allows an attacker to add an admin user in Harbor by sending a crafted POST request to the `/api/users` endpoint with the parameter `"has_admin_role":true`. The script supports both single-target and batch exploitation.