Alexey Pronin

3 exploits Active since Sep 2020
CVE-2020-13802 WRITEUP CRITICAL WORKING POC
rebar3 3.0.0-beta.3-3.13.2 - OS Command Injection via Dependency URL Parameter
Rebar3 versions 3.0.0-beta.3 to 3.13.2 are vulnerable to OS command injection via URL parameter of dependency specification.
CVSS 9.8
CVE-2020-24379 WRITEUP CRITICAL WORKING POC
Yaws 1.81-2.0.7 - XML External Entity Injection via WebDAV Implementation
WebDAV implementation in Yaws web server versions 1.81 to 2.0.7 is vulnerable to XXE injection.
CVSS 9.8
CVE-2020-24916 WRITEUP CRITICAL WORKING POC
Yaws 1.81-2.0.7 - OS Command Injection via CGI Implementation
CGI implementation in Yaws web server versions 1.81 to 2.0.7 is vulnerable to OS command injection.
CVSS 9.8