OS command injection, port forward
InfluxDB-Exploit
Previse
Previse: gobuster find directories, with burpsuite bypass redirect,
BountyHunter
BountyHunter:XML external entity (XXE) injection
Shocker
Shocker:shellshock (Apache mod_cgi)
OpenAdmin
OpenAdmin
Pikaboo
Pikaboo
Explore
Explore: android, ES File Explorer (CVE-2019–6447), ssh port forwarding
Static
Static
Spider
SpiderSSTI(Server-Side Template Injection)
https://github.com/swisskyrepo/PayloadsAlTheThings/tree/master/Server%20Side%20Template%20Injection#jinja2
Tenet
Tenet