Daniel Jensen

5 exploits Active since Jul 2015
CVE-2017-7577 VULNCHECK_XDB CRITICAL WORKING POC
XiongMai uc-httpd - Path Traversal via GET Request
XiongMai uc-httpd has directory traversal allowing the reading of arbitrary files via a "GET ../" HTTP request.
CVSS 9.8
CVE-2015-5452 EXPLOITDB ruby WORKING POC
Watchguard XCS <10.0 - SQL Injection
SQL injection vulnerability in Watchguard XCS 9.2 and 10.0 before build 150522 allows remote attackers to execute arbitrary SQL commands via the sid cookie, as demonstrated by a request to borderpost/imp/compose.php3.
CVE-2015-5453 METASPLOIT ruby WORKING POC
Watchguard XCS <10.0 - Command Injection
Watchguard XCS 9.2 and 10.0 before build 150522 allow remote authenticated users to execute arbitrary commands via shell metacharacters in the id parameter to ADMIN/mailqueue.spl.
EIP-2026-100688 EXPLOITDB ruby WORKING POC
Watchguard XCS - FixCorruptMail Privilege Escalation (Metasploit)
CVE-2015-5453 EXPLOITDB ruby WORKING POC
Watchguard XCS <10.0 - Command Injection
Watchguard XCS 9.2 and 10.0 before build 150522 allow remote authenticated users to execute arbitrary commands via shell metacharacters in the id parameter to ADMIN/mailqueue.spl.