CVE-2026-1281

This repository contains a Python script that performs safe, non-exploitative checks for CVE-2026-1281 in Ivanti EPMM by sending HEAD and GET requests to known affected paths and analyzing response times and status codes. It does not contain exploit code but helps identify potentially vulnerable instances.

This repository contains functional exploit code for CVE-2026-1281, targeting Ivanti EPMM. It includes multiple payloads for remote command execution, reverse shells, webshells, persistence mechanisms, and data exfiltration, demonstrating a clear understanding of the vulnerability.

This repository contains a functional Dockerized environment to reproduce CVE-2026-1281 and CVE-2026-1340, Ivanti EPMM pre-auth RCE vulnerabilities. It includes a vulnerable CGI script and test scripts to demonstrate command execution via Bash arithmetic expansion.