Gionathan "John" Reale

46 exploits Active since Feb 2019
CVE-2018-25264 EXPLOITDB MEDIUM python WORKING POC
TransMac 12.2 Denial of Service via License Key Field
TransMac 12.2 contains a buffer overflow vulnerability in the license key input field that allows local attackers to crash the application by submitting an oversized string. Attackers can generate a payload file containing 4000 bytes of data, paste it into the License Key field, and trigger a denial of service condition.
CVSS 6.2
CVE-2018-25263 EXPLOITDB HIGH python WORKING POC
Faleemi Desktop Software 1.8.2 Local Buffer Overflow SEH
Faleemi Desktop Software 1.8.2 contains a local buffer overflow vulnerability in the Device alias field that allows local attackers to trigger a structured exception handler (SEH) overwrite. Attackers can craft a malicious payload and paste it into the Device alias field within the Managing Log interface to execute arbitrary code with calculator proof-of-concept execution.
CVSS 8.4
CVE-2018-25268 EXPLOITDB HIGH python WORKING POC
LanSpy 2.0.1.159 Local Buffer Overflow via Scan Field
LanSpy 2.0.1.159 contains a local buffer overflow vulnerability that allows attackers to overwrite the instruction pointer by supplying oversized input to the scan field. Attackers can craft a payload with 688 bytes of padding followed by 4 bytes of controlled data to crash the application or potentially achieve code execution.
CVSS 8.4
CVE-2018-25271 EXPLOITDB MEDIUM python WORKING POC
Textpad 8.1.2 Denial of Service via Run Command
Textpad 8.1.2 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long buffer string through the Run command interface. Attackers can paste a 5000-byte payload into the Command field via Tools > Run to trigger a buffer overflow that crashes the application.
CVSS 6.2
CVE-2014-10078 EXPLOITDB MEDIUM text WRITEUP
Vembu StoreGrid 4.4.x - Cross-Site Scripting in Registration Failure/Success Pages
Vembu StoreGrid 4.4.x has XSS in interface/registercustomer/onlineregsuccess.php, interface/registerreseller/onlineregfailure.php, interface/registerclient/onlineregfailure.php, and interface/registercustomer/onlineregfailure.php.
CVSS 6.1
EIP-2026-119474 EXPLOITDB python WORKING POC
Immunity Debugger 1.85 - Denial of Service (PoC)
EIP-2026-119626 EXPLOITDB python WORKING POC
Zortam MP3 Media Studio 23.95 - Denial of Service (PoC)
CVE-2019-9767 EXPLOITDB HIGH python WORKING POC
Free MP3 CD Ripper 2.6 - Buffer Overflow
Stack-based buffer overflow in Free MP3 CD Ripper 2.6, when converting a file, allows user-assisted remote attackers to execute arbitrary code via a crafted .wma file.
CVSS 7.8
CVE-2019-9766 EXPLOITDB HIGH python WORKING POC
Free MP3 CD Ripper 2.6 - Buffer Overflow
Stack-based buffer overflow in Free MP3 CD Ripper 2.6, when converting a file, allows user-assisted remote attackers to execute arbitrary code via a crafted .mp3 file.
CVSS 7.8
EIP-2026-119504 EXPLOITDB python WORKING POC
XAMPP Control Panel 3.2.2 - Denial of Service (PoC)
EIP-2026-119503 EXPLOITDB python WORKING POC
XAMPP Control Panel 3.2.2 - Denial of Service (PoC)
EIP-2026-119498 EXPLOITDB python WORKING POC
Textpad 7.6.4 - Denial Of Service (PoC)
EIP-2026-118175 EXPLOITDB python WORKING POC
XAMPP Control Panel 3.2.2 - Buffer Overflow (SEH) (Unicode)
EIP-2026-117157 EXPLOITDB python WORKING POC
Faleemi Desktop Software 1.8.2 - 'SavePath for ScreenShots' Buffer Overflow (SEH)
EIP-2026-117156 EXPLOITDB python WORKING POC
Faleemi Desktop Software 1.8.2 - 'SavePath for ScreenShots' Buffer Overflow (SEH)
EIP-2026-116048 EXPLOITDB python WORKING POC
PDF Explorer 1.5.66.2 - Denial of Service (PoC)
CVE-2019-9768 EXPLOITDB HIGH php WORKING POC
Thinkst Canarytokens <4e89ee0 - Info Disclosure
Thinkst Canarytokens through commit hash 4e89ee0 (2019-03-01) relies on limited variation in size, metadata, and timestamp, which makes it easier for attackers to estimate whether a Word document contains a token.
CVSS 7.5
CVE-2014-10079 EXPLOITDB MEDIUM text WRITEUP
Vembu StoreGrid 4.4.x - Exposure of Sensitive Information via Index Page Hidden Form Value
In Vembu StoreGrid 4.4.x, the front page of the server web interface leaks the private IP address in the "ipaddress" hidden form value of the HTML source code, which is disclosed because of incorrect processing of an index.php/ trailing slash.
CVSS 5.3
CVE-2019-9769 EXPLOITDB HIGH html WORKING POC
PilusCart 1.4.1 - Cross-Site Request Forgery via User Creation Endpoint
PilusCart 1.4.1 is vulnerable to index.php?module=users&action=newUser CSRF, leading to the addition of a new user as administrator.
CVSS 8.8
CVE-2019-8953 EXPLOITDB MEDIUM text WORKING POC
netgate/haproxy < 0.59_16 - Cross-Site Scripting via Description or ACL Parameter
The HAProxy package before 0.59_16 for pfSense has XSS via the desc (aka Description) or table_actionsaclN parameter, related to haproxy_listeners.php and haproxy_listeners_edit.php.
CVSS 6.1
CVE-2019-8982 EXPLOITDB CRITICAL text WORKING POC
WaveMaker Studio 6.6 - Server-Side Request Forgery via studioService.download inUrl Parameter
com/wavemaker/studio/StudioService.java in WaveMaker Studio 6.6 mishandles the studioService.download?method=getContent&inUrl= value, leading to disclosure of local files and SSRF.
CVSS 9.6