0xYumeko

2 exploits Active since May 2024

CVE-2024-32640 NOMISEC CRITICAL WORKING POC

MASA CMS <7.4.5-7.2.7 - SQL Injection

MASA CMS is an Enterprise Content Management platform based on open source technology. Versions prior to 7.4.5, 7.3.12, and 7.2.7 contain a SQL injection vulnerability in the `processAsyncObject` method that can result in remote code execution. Versions 7.4.5, 7.3.12, and 7.2.7 contain a fix for the issue.

1 stars

CVSS 9.8

View Code

CVE-2024-24919 NOMISEC HIGH WORKING POC

Check Point Quantum Gateway - Information Disclosure

Potentially allowing an attacker to read certain information on Check Point Security Gateways once connected to the internet and enabled with remote Access VPN or Mobile Access Software Blades. A Security fix that mitigates this vulnerability is available.

1 stars

CVSS 8.6

View Code