CVE-2019-17240

This exploit bypasses the brute-force mitigation in Bludit <= 3.9.2 by manipulating the X-Forwarded-For header to avoid IP-based blocking. It performs a credential brute-force attack using provided username and password lists.

This Ruby script exploits CVE-2019-17240, a brute-force mitigation bypass in Bludit <= 3.9.2. It bypasses IP-based rate limiting by manipulating the 'X-Forwarded-For' header to brute-force admin credentials.

This repository contains a functional Python script that exploits CVE-2019-17240, a brute-force mitigation bypass in Bludit CMS versions prior to 3.9.2. The exploit leverages the X-Forwarded-For header to bypass login attempt restrictions and includes a multi-threaded brute-force attack with CSRF token handling.

This repository contains a functional Python exploit for CVE-2019-17240, which bypasses the brute-force mitigation mechanism in Bludit CMS versions <= 3.9.2. The exploit uses the X-Forwarded-For header to bypass rate-limiting and attempts credential brute-forcing against the login endpoint.

This repository contains a Bash script that exploits CVE-2019-17240, a vulnerability in Bludit CMS <= 3.9.2 allowing brute-force attacks by bypassing CSRF token protection. The script dynamically fetches CSRF tokens and attempts login with a provided password list.

This repository contains a functional Go-based brute-force mitigation bypass exploit for Bludit CMS versions <= 3.9.22. The exploit automates credential brute-forcing by bypassing CSRF protections and leveraging the X-Forwarded-For header to evade rate-limiting.

This script exploits CVE-2019-17240, an authentication bypass vulnerability in Vembu BDR Suite. It brute-forces credentials by injecting passwords via the X-Forwarded-For header while bypassing CSRF protection.

This repository contains a functional Python script that exploits CVE-2019-17240, an authentication bruteforce bypass vulnerability in Bludit 3.9.2. The script automates credential brute-forcing by bypassing rate-limiting mechanisms and handling CSRF tokens.

This repository contains a functional Python script that exploits CVE-2019-17240, an authentication brute-force bypass vulnerability in Bludit CMS versions <= 3.9.2. The script automates the brute-force attack by leveraging CSRF token extraction and bypassing rate-limiting mechanisms.

This repository contains a functional Python exploit for CVE-2019-17240, which bypasses Bludit's authentication and uploads a malicious PHP payload to achieve remote code execution via a reverse shell. The exploit leverages CSRF token extraction and file upload manipulation.

This repository contains a functional brute-force exploit for CVE-2019-17240, targeting Bludit CMS. The script bypasses brute-force mitigation by injecting passwords via the X-Forwarded-For header while attempting authentication.

This repository contains a functional Python script that exploits CVE-2019-17240, an authentication bypass vulnerability in Bludit 3.9.2. The script performs a brute-force attack by leveraging the 'X-Forwarded-For' header to bypass login restrictions.