Benjamin Kunz Mejri

139 exploits Active since Jan 2012
EIP-2026-102298 EXPLOITDB text WRITEUP
SuperBackup 2.0.5 for iOS - Persistent Cross-Site Scripting
EIP-2026-102301 EXPLOITDB text WRITEUP
TigerCom My Assistant 1.1 iOS - Local File Inclusion
EIP-2026-102303 EXPLOITDB text WRITEUP
USB&WiFi Flash Drive 1.3 iOS - Code Execution
EIP-2026-102307 EXPLOITDB text WRITEUP
WebDisk 3.0.2 PhotoViewer iOS - Command Execution
EIP-2026-102308 EXPLOITDB text WRITEUP
WebDisk+ 2.1 iOS - Code Execution
EIP-2026-102309 EXPLOITDB text WRITEUP
Wifi Album 1.47 iOS - Command Injection
EIP-2026-102311 EXPLOITDB text WRITEUP
Wifi Drive Pro 1.2 iOS - Local File Inclusion
EIP-2026-102314 EXPLOITDB text WRITEUP
WiFiles HD 1.3 iOS - Local File Inclusion
EIP-2026-102315 EXPLOITDB text WRITEUP
WiFly 1.0 Pro iOS - Multiple Vulnerabilities
EIP-2026-102319 EXPLOITDB text WORKING POC
Wireless Photo Transfer 3.0 iOS - Local File Inclusion
EIP-2026-102320 EXPLOITDB text WRITEUP
Wireless Transfer App 3.7 iOS - Multiple Web Vulnerabilities
EIP-2026-102321 EXPLOITDB text WRITEUP
WK UDID 1.0.1 iOS - Command Injection
CVE-2017-15374 EXPLOITDB MEDIUM text WRITEUP
Shopware 5.2.5-5.3 - Stored Cross-Site Scripting in Backend Customer and Order Preview
Shopware v5.2.5 - v5.3 is vulnerable to cross site scripting in the customer and order section of the content management system backend modules. Remote attackers are able to inject malicious script code into the firstname, lastname, or order input fields to provoke persistent execution in the customer and orders section of the backend. The execution occurs in the administrator backend listing when processing a preview of the customers (kunden) or orders (bestellungen). The injection can be performed interactively via user registration or by manipulation of the order information inputs. The issue can be exploited by low privileged user accounts against higher privileged (admin or moderator) accounts.
CVSS 6.1
EIP-2026-102483 EXPLOITDB text WRITEUP
Hyperic HQ Enterprise 4.5.1 - Cross-Site Scripting / Multiple Security Vulnerabilities
CVE-2013-7025 EXPLOITDB text WRITEUP
SonicWALL GMS Analyzer and UMA EM5000 7.1 SP1 - Authenticated Cross-Site Scripting via valfield_1 or value_1 Parameter
Multiple cross-site scripting (XSS) vulnerabilities in ematStaticAlertTypes.jsp in the Alert Settings section in Dell SonicWALL Global Management System (GMS), Analyzer, and UMA EM5000 7.1 SP1 before Hotfix 134235 allow remote authenticated users to inject arbitrary web script or HTML via the (1) valfield_1 or (2) value_1 parameter to createNewThreshold.jsp.
EIP-2026-101515 EXPLOITDB text WRITEUP
Air Disk Wireless 1.9 iPad iPhone - Multiple Vulnerabilities
EIP-2026-102094 EXPLOITDB text WRITEUP
USB Sharp 1.3.4 iPad iPhone - Multiple Vulnerabilities
EIP-2026-102018 EXPLOITDB text WRITEUP
SonicWALL SonicOS 5.8.1.8 WAF - Cross-Site Scripting
EIP-2026-102001 EXPLOITDB text WRITEUP
SimpleTransfer 2.2.1 - Command Injection
EIP-2026-101849 EXPLOITDB text WRITEUP
Mobile USB Drive HD - Multiple Local File Inclusion / Arbitrary File Upload Vulnerabilities
EIP-2026-101746 EXPLOITDB text WRITEUP
Fortigate UTM WAF Appliance - Multiple Vulnerabilities
EIP-2026-101695 EXPLOITDB text WRITEUP
eFile Wifi Transfer Manager 1.0 - Multiple Vulnerabilities
EIP-2026-101675 EXPLOITDB text WORKING POC
Draytek VigorAP 1000C - Persistent Cross-Site Scripting
EIP-2026-101666 EXPLOITDB text WRITEUP
Dell SonicWALL Gms 7.2.x - Code Injection
EIP-2026-101551 EXPLOITDB text WRITEUP
Barracuda Message Archiver 650 - Persistent Cross-Site Scripting