Edo Maland

3 exploits Active since Oct 2019
CVE-2019-11932 NOMISEC HIGH WORKING POC
WhatsApp < 2.19.244 - Remote Code Execution via GIF Image Parsing
A double free vulnerability in the DDGifSlurp function in decoding.c in the android-gif-drawable library before version 1.2.18, as used in WhatsApp for Android before version 2.19.244 and many other Android applications, allows remote attackers to execute arbitrary code or cause a denial of service when the library is used to parse a specially crafted GIF image.
4 stars
CVSS 8.8
CVE-2020-29280 EXPLOITDB CRITICAL text WORKING POC
Victor CMS 1.0 - SQL Injection via Search Parameter
The Victor CMS v1.0 application is vulnerable to SQL injection via the 'search' parameter on the search.php page.
CVSS 9.8
EIP-2026-106341 EXPLOITDB text WORKING POC
Daily Expenses Management System 1.0 - 'item' SQL Injection