0xGunrunner

3 exploits Active since Apr 2024
CVE-2024-26229 NOMISEC HIGH WORKING POC
Windows CSC Service - Elevation of Privilege via Heap-based Buffer Overflow
Windows CSC Service Elevation of Privilege Vulnerability
CVSS 7.8
CVE-2025-34085 NOMISEC WORKING POC
Rejected
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority as it is a duplicate of CVE-2020-36847.
CVE-2020-36847 VULNCHECK_XDB CRITICAL WORKING POC
Simple-File-List Plugin <4.2.2 - RCE
The Simple-File-List Plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and including, 4.2.2 via the rename function which can be used to rename uploaded PHP code with a png extension to use a php extension. This allows unauthenticated attackers to execute code on the server.
CVSS 9.8