Cristian 'void' Giustini

4 exploits Active since Nov 2021
EIP-2026-106596 EXPLOITDB text WORKING POC
Drupal Module MiniorangeSAML 8.x-2.22 - Privilege escalation
CVE-2021-43136 EXPLOITDB CRITICAL python WORKING POC
FormaLMS <= 2.4.4 - Authentication Bypass via Hard-coded Credentials
An authentication bypass issue in FormaLMS <= 2.4.4 allows an attacker to bypass the authentication mechanism and obtain a valid access to the platform.
CVSS 9.8
CVE-2022-44268 EXPLOITDB MEDIUM text WRITEUP
ImageMagick 7.1.0-49 - Info Disclosure
ImageMagick 7.1.0-49 is vulnerable to Information Disclosure. When it parses a PNG image (e.g., for resize), the resulting image could have embedded the content of an arbitrary. file (if the magick binary has permissions to read it).
CVSS 6.5
CVE-2022-29885 EXPLOITDB HIGH python WORKING POC
Apache Tomcat 8.5.38-8.5.78 and 10.1.0-M1-10.1.0-M14 - Denial of Service via EncryptInterceptor
The documentation of Apache Tomcat 10.1.0-M1 to 10.1.0-M14, 10.0.0-M1 to 10.0.20, 9.0.13 to 9.0.62 and 8.5.38 to 8.5.78 for the EncryptInterceptor incorrectly stated it enabled Tomcat clustering to run over an untrusted network. This was not correct. While the EncryptInterceptor does provide confidentiality and integrity protection, it does not protect against all risks associated with running over any untrusted network, particularly DoS risks.
CVSS 7.5