Giuseppe Fuggiano - Security Researcher - Exploit Intelligence Platform

CVE-2009-3573 EXPLOITDB html WORKING POC

EMC Captiva PixTools Distributed Imaging <2.2 - File Creation/Overw...

Multiple insecure method vulnerabilities in the PDIControl.PDI.1 ActiveX control (PDIControl.dll) 2.2.3160.0 in EMC Captiva PixTools Distributed Imaging 2.2 allow remote attackers to create or overwrite arbitrary files via the (1) SetLogFileName and (2) WriteToLog methods.

View Code

EIP-2026-107139 EXPLOITDB text WORKING POC

Flatpress 0.804 < 0.812.1 - Local File Inclusion

View Code

CVE-2019-12725 EXPLOITDB CRITICAL ruby WORKING POC

ZeroShell 3.9.0 - Unauthenticated Remote Command Execution via HTTP Parameter Injection

Zeroshell 3.9.0 is prone to a remote command execution vulnerability. Specifically, this issue occurs because the web application mishandles a few HTTP parameters. An unauthenticated attacker can exploit this issue by injecting OS commands inside the vulnerable parameters.

CVSS 9.8

View Code