Ebrahim Shafiei (EbraSha) - Security Researcher - Exploit Intelligence Platform

CVE-2024-52940 NOMISEC HIGH WORKING POC

AnyDesk <= 8.1.0 - Sensitive Information Exposure via Direct Connection Traffic

AnyDesk through 8.1.0 on Windows, when Allow Direct Connections is enabled, inadvertently exposes a public IP address within network traffic. The attacker must know the victim's AnyDesk ID.

33 stars

CVSS 7.5

View Code

CVE-2024-7029 NOMISEC HIGH WORKING POC

AVTECH AVM1203 Firmware < fullimg-1023-1007-1011-1009 - Unauthenticated OS Command Injection

Commands can be injected over the network and executed without authentication.

5 stars

CVSS 8.8

View Code

CVE-2024-28000 NOMISEC CRITICAL WORKING POC

WordPress LiteSpeed Cache - Unauthenticated Privilege Escalation to Admin

Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache.This issue affects LiteSpeed Cache: from n/a through <= 6.3.0.1.

5 stars

CVSS 9.8

View Code