George Tsimpidas

13 exploits Active since Aug 2020
CVE-2020-27383 WRITEUP HIGH WORKING POC
Battle.Net 1.27.1.12428 - Privilege Escalation
Battle.net.exe in Battle.Net 1.27.1.12428 suffers from an elevation of privileges vulnerability which can be used by an "Authenticated User" to modify the existing executable file with a binary of his choice. The vulnerability exist due to weak set of permissions being granted to the "Authenticated Users Group" which grants the (F) Flag aka "Full Control"
CVSS 7.8
CVE-2020-27384 WRITEUP HIGH WORKING POC
Guild Wars 2 <106916 - Privilege Escalation
The Gw2-64.exe in Guild Wars 2 launcher version 106916 suffers from an elevation of privileges vulnerability which can be used by an "Authenticated User" to modify the existing executable file with a binary of his choice. The vulnerability exist due to the improper permissions, with the 'F' flag (Full Control) for 'Everyone' group, making the entire directory 'Guild Wars 2' and its files and sub-dirs world-writable.
CVSS 7.8
CVE-2021-47852 EXPLOITDB HIGH text WORKING POC
Rockstar Games Launcher <1.0.37.349 - Privilege Escalation
Rockstar Games Launcher 1.0.37.349 contains a privilege escalation vulnerability that allows authenticated users to modify the service executable with weak permissions. Attackers can replace the RockstarService.exe with a malicious binary to create a new administrator user and gain elevated system access.
CVSS 8.8
CVE-2020-37007 EXPLOITDB MEDIUM text WORKING POC
Liman 0.7 - CSRF
Liman 0.7 contains a cross-site request forgery vulnerability that allows attackers to manipulate user account settings without proper request validation. Attackers can craft malicious HTML forms to change user passwords or modify account information by tricking logged-in users into submitting unauthorized requests.
CVSS 5.3
EIP-2026-116883 EXPLOITDB text WORKING POC
Battle.Net 1.27.1.12428 - Insecure File Permissions
EIP-2026-117261 EXPLOITDB text WORKING POC
Guild Wars 2 - Insecure Folder Permissions
EIP-2026-111736 EXPLOITDB text WORKING POC
Regis Inventory And Monitoring System 1.0 - 'Item List' Persistent Cross-Site Scripting
EIP-2026-110188 EXPLOITDB text WRITEUP
Online Students Management System 1.0 - 'username' SQL Injections
CVE-2020-24223 EXPLOITDB MEDIUM text WORKING POC
Mara CMS 7.5 - XSS
Mara CMS 7.5 allows cross-site scripting (XSS) in contact.php via the theme or pagetheme parameters.
CVSS 6.1
CVE-2024-31777 EXPLOITDB CRITICAL text WORKING POC
openeclass <3.15 - RCE
File Upload vulnerability in openeclass v.3.15 and before allows an attacker to execute arbitrary code via a crafted file to the certbadge.php endpoint.
CVSS 9.8
EIP-2026-103265 EXPLOITDB text WRITEUP
Boa Web Server v0.94.14 - Authentication Bypass
EIP-2026-101071 EXPLOITDB python WORKING POC
Router ZTE-H108NS - Stack Buffer Overflow (DoS)
EIP-2026-101423 EXPLOITDB text WORKING POC
Router ZTE-H108NS - Authentication Bypass