Ahmed Alroky

18 exploits Active since Jan 2022
CVE-2023-23063 VULNCHECK_XDB HIGH WORKING POC
Cellinx Nvt Web Server - Path Traversal
Cellinx NVT v1.0.6.002b was discovered to contain a local file disclosure vulnerability via the component /cgi-bin/GetFileContent.cgi.
CVSS 7.5
CVE-2023-28343 VULNCHECK_XDB CRITICAL WORKING POC
Apsystems Energy Communication Unit Firmware - OS Command Injection
OS command injection affects Altenergy Power Control Software C1.2.5 via shell metacharacters in the index.php/management/set_timezone timezone parameter, because of set_timezone in models/management_model.php.
CVSS 9.8
CVE-2022-38840 EXPLOITDB HIGH text WORKING POC
Güralp MAN-EAM-0003 3.2.4 - XXE
cgi-bin/xmlstatus.cgi in Güralp MAN-EAM-0003 3.2.4 is vulnerable to an XML External Entity (XXE) issue via XML file upload, which leads to local file disclosure.
CVSS 7.5
CVE-2022-34046 EXPLOITDB HIGH text WORKING POC
Wavlink WN533A8 M33A8.V5030.190716 - Info Disclosure
An access control issue in Wavlink WN533A8 M33A8.V5030.190716 allows attackers to obtain usernames and passwords via view-source:http://IP_ADDRESS/sysinit.shtml?r=52300 and searching for [logincheck(user);].
CVSS 7.5
CVE-2022-34048 EXPLOITDB MEDIUM text WORKING POC
Wavlink WN533A8 M33A8.V5030.190716 - XSS
Wavlink WN533A8 M33A8.V5030.190716 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the login_page parameter.
CVSS 6.1
CVE-2022-34047 EXPLOITDB HIGH text WORKING POC
Wavlink WN530HG4 M30HG4.V5030.191116 - Info Disclosure
An access control issue in Wavlink WN530HG4 M30HG4.V5030.191116 allows attackers to obtain usernames and passwords via view-source:http://IP_ADDRESS/set_safety.shtml?r=52300 and searching for [var syspasswd].
CVSS 7.5
CVE-2021-45428 EXPLOITDB CRITICAL text WORKING POC
Telesquare Tlr-2005ksh Firmware - IDOR
TLR-2005KSH is affected by an incorrect access control vulnerability. THe PUT method is enabled so an attacker can upload arbitrary files including HTML and CGI formats.
CVSS 9.8
CVE-2022-29299 EXPLOITDB text WORKING POC
Rejected
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2021-20660. Reason: This candidate is a reservation duplicate of CVE-2021-20660. Notes: All CVE users should reference CVE-2021-20660 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage
CVE-2021-4039 EXPLOITDB CRITICAL text WORKING POC
Zyxel NWA-1100-NH - Command Injection
A command injection vulnerability in the web interface of the Zyxel NWA-1100-NH firmware could allow an attacker to execute arbitrary OS commands on the device.
CVSS 9.8
CVE-2023-28343 EXPLOITDB CRITICAL python WORKING POC
Apsystems Energy Communication Unit Firmware - OS Command Injection
OS command injection affects Altenergy Power Control Software C1.2.5 via shell metacharacters in the index.php/management/set_timezone timezone parameter, because of set_timezone in models/management_model.php.
CVSS 9.8
CVE-2022-38841 EXPLOITDB HIGH text WORKING POC
Linksys AX3200 1.1.00 - Command Injection
Linksys AX3200 1.1.00 is vulnerable to OS command injection by authenticated users via shell metacharacters to the diagnostics traceroute page.
CVSS 8.8
CVE-2022-29301 EXPLOITDB text WORKING POC
Rejected
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2021-20660. Reason: This candidate is a reservation duplicate of CVE-2021-20660. Notes: All CVE users should reference CVE-2021-20660 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage
CVE-2021-46424 EXPLOITDB CRITICAL text WORKING POC
Telesquare TLR-2005KSH 1.0.0 - File Deletion
Telesquare TLR-2005KSH 1.0.0 is affected by an arbitrary file deletion vulnerability that allows a remote attacker to delete any file, even system internal files, via a DELETE request.
CVSS 9.1
CVE-2021-46378 EXPLOITDB HIGH text WORKING POC
DLink DIR850 ET850-1.08TRb03 - Info Disclosure
DLink DIR850 ET850-1.08TRb03 is affected by an incorrect access control vulnerability through an unauthenticated remote configuration download.
CVSS 7.5
CVE-2022-29298 EXPLOITDB HIGH text WORKING POC
SolarView Compact <6.00 - Path Traversal
SolarView Compact ver.6.00 allows attackers to access sensitive files via directory traversal.
CVSS 7.5
CVE-2022-29303 EXPLOITDB CRITICAL text WORKING POC
SolarView Compact 6.00 - Command Injection
SolarView Compact ver.6.00 was discovered to contain a command injection vulnerability via conf_mail.php.
CVSS 9.8
CVE-2021-46422 EXPLOITDB CRITICAL text WORKING POC
Telesquare SDT-CW3B1 1.1.0 - Command Injection
Telesquare SDT-CW3B1 1.1.0 is affected by an OS command injection vulnerability that allows a remote attacker to execute OS commands without any authentication.
CVSS 9.8
CVE-2021-46379 EXPLOITDB MEDIUM text WORKING POC
DLink DIR850 ET850-1.08TRb03 - Open Redirect
DLink DIR850 ET850-1.08TRb03 is affected by an incorrect access control vulnerability through URL redirection to untrusted site.
CVSS 6.1