Alessio Romano (sfoffo)

3 exploits Active since Aug 2024
CVE-2024-42845 NOMISEC HIGH WORKING POC
InVesalius <3.1.99998 - Code Injection
An eval Injection vulnerability in the component invesalius/reader/dicom.py of InVesalius 3.1.99991 through 3.1.99998 allows attackers to execute arbitrary code via loading a crafted DICOM file.
2 stars
CVSS 8.0
EIP-2026-114681 EXPLOITDB python WORKING POC
Invesalius3 - Remote Code Execution
EIP-2026-104362 EXPLOITDB text WORKING POC
NoteMark < 0.13.0 - Stored XSS