Daniel Hoffmann

11 exploits Active since Sep 2023
CVE-2026-31151 WRITEUP CRITICAL WORKING POC
Kaleris Yard Management Solutions 7.2.2.1 - Authentication Bypass via Login Mechanism
An issue in the login mechanism of Kaleris YMS v7.2.2.1 allows attackers to bypass login verification to access the application 's resources.
CVSS 9.8
CVE-2026-31153 WRITEUP MEDIUM WORKING POC
Bynder v0.1.394 - Stored Cross-Site Scripting
A stored cross-site scripting (XSS) vulnerability in Bynder v0.1.394 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.
CVSS 5.4
CVE-2023-36361 WRITEUP CRITICAL WORKING POC
audimexee 14.1.7 - SQL Injection via p_table_name Parameter
Audimexee v14.1.7 was discovered to contain a SQL injection vulnerability via the p_table_name parameter.
CVSS 9.8
CVE-2023-45911 WRITEUP CRITICAL WORKING POC
WIPOTEC GmbH ComScale <4.4.12.723 - Auth Bypass
An issue in WIPOTEC GmbH ComScale v4.3.29.21344 and v4.4.12.723 allows unauthenticated attackers to login as any user without a password.
CVSS 9.8
CVE-2023-45912 WRITEUP HIGH WORKING POC
WIPOTEC GmbH ComScale <4.4.12.723 - Info Disclosure
WIPOTEC GmbH ComScale v4.3.29.21344 and v4.4.12.723 fails to validate user sessions, allowing unauthenticated attackers to read files from the underlying operating system and obtain directory listings.
CVSS 7.5
CVE-2025-43949 WRITEUP CRITICAL WRITEUP
MuM MapEdit <24.2.3 - SQL Injection
MuM (aka Mensch und Maschine) MapEdit (aka mapedit-web) 24.2.3 is vulnerable to SQL Injection that allows an attacker to execute malicious SQL statements that control a web application's database server.
CVSS 9.8
CVE-2025-43950 WRITEUP HIGH WRITEUP
DPMAdirektPro 4.1.5 - Privilege Escalation
DPMAdirektPro 4.1.5 is vulnerable to DLL Hijacking. It happens by placing a malicious DLL in a directory (in the absence of a legitimate DLL), which is then loaded by the application instead of the legitimate DLL. This causes the malicious DLL to load with the same privileges as the application, thus causing a privilege escalation.
CVSS 7.8
CVE-2025-59684 WRITEUP HIGH WRITEUP
DigiSign DigiSigner ONE 1.0.4.60 - DLL Hijacking
DigiSign DigiSigner ONE 1.0.4.60 allows DLL Hijacking.
CVSS 8.8
CVE-2025-59685 WRITEUP MEDIUM WRITEUP
Kazaar 1.25.12 - Unauthenticated JWT Authentication Bypass via 'none' Algorithm
Kazaar 1.25.12 allows a JWT with none in the alg field.
CVSS 5.3
CVE-2025-59686 WRITEUP MEDIUM WORKING POC
Kazaar 1.25.12 - Improper Authorization via Order ID Manipulation
Kazaar 1.25.12 allows /api/v1/org-id/orders/order-id/documents calls with a modified order-id.
CVSS 6.5
CVE-2025-59687 WRITEUP MEDIUM WORKING POC
IMPAQTR Aurora <1.36 - Info Disclosure
IMPAQTR Aurora before 1.36 allows Insecure Direct Object Reference attacks against the users list, organization details, bookmarks, and notifications of an arbitrary organization.
CVSS 4.3