Christian Galeone

3 exploits Active since Sep 2014
CVE-2014-7221 EXPLOITDB MEDIUM WORKING POC
TeamSpeak 3 < 3.0.14 - Authenticated Denial of Service via Crafted BBCode Image Tag
TeamSpeak Client 3.0.14 and earlier allows remote authenticated users to cause a denial of service (buffer overflow and application crash) by connecting to a channel with a different client instance, and placing crafted data in the Chat/Server tab containing [img]//http:// substrings.
CVSS 6.5
CVE-2014-7222 EXPLOITDB MEDIUM text WORKING POC
TeamSpeak Client <3.0.14 - Buffer Overflow
Buffer overflow in TeamSpeak Client 3.0.14 and earlier allows remote authenticated users to cause a denial of service (application crash) by connecting to a channel with a different client instance, and placing crafted data in the Chat/Server tab with two \\ (backslash) characters, a digit, a \ (backslash) character, and "z" in a series of nested img BBCODE tags.
CVSS 6.5
CVE-2014-5465 EXPLOITDB text WORKING POC
Download Shortcode < 0.2.3 - Path Traversal via File Parameter
Directory traversal vulnerability in force-download.php in the Download Shortcode plugin 0.2.3 and earlier for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter.