Agustin Gianni

2 exploits Active since May 2005
CVE-2021-32831 WRITEUP HIGH WRITEUP
total.js < 3.4.9 - Remote Code Execution via utils.set Function
Total.js framework (npm package total.js) is a framework for Node.js platfrom written in pure JavaScript similar to PHP's Laravel or Python's Django or ASP.NET MVC. In total.js framework before version 3.4.9, calling the utils.set function with user-controlled values leads to code-injection. This can cause a variety of impacts that include arbitrary code execution. This is fixed in version 3.4.9.
CVSS 7.5
CVE-2005-1544 EXPLOITDB c WORKING POC
libtiff - Stack-based Buffer Overflow via Malformed BitsPerSample Tag
Stack-based buffer overflow in libTIFF before 3.7.2 allows remote attackers to execute arbitrary code via a TIFF file with a malformed BitsPerSample tag.