Gjoko 'LiquidWorm' Krstic

684 exploits Active since Nov 2005
EIP-2026-119429 EXPLOITDB text WORKING POC
Soitec SmartEnergy 1.4 - SCADA Login SQL Injection / Authentication Bypass
EIP-2026-119682 EXPLOITDB python WORKING POC
OpenMRS 2.3 (1.11.4) - XML External Entity Processing
EIP-2026-119415 EXPLOITDB text WORKING POC
Pelco VideoXpert 1.12.105 - Information Disclosure
EIP-2026-119423 EXPLOITDB python WORKING POC
Serviio PRO 1.8 DLNA Media Streaming Server - REST API Arbitrary Code Execution
EIP-2026-119436 EXPLOITDB text WORKING POC
SpiceWorks 6.0.00993 - Multiple Script Injection Vulnerabilities
EIP-2026-119345 EXPLOITDB text WRITEUP
actiTIME 2015.2 - Multiple Vulnerabilities
EIP-2026-119373 EXPLOITDB text WORKING POC
Gemalto Sentinel License Manager 18.0.1.55505 - Directory Traversal
CVE-2012-2172 EXPLOITDB text WRITEUP
IBM DS Storage Manager Host Software < 10.83 - XSS
Cross-site scripting (XSS) vulnerability in SoftwareRegistration.do in the Storage Manager Profiler in IBM System Storage DS Storage Manager before 10.83.xx.18 on DS Series devices allows remote attackers to inject arbitrary web script or HTML via the updateRegn parameter.
EIP-2026-119414 EXPLOITDB text WORKING POC
Pelco VideoXpert 1.12.105 - Directory Traversal
EIP-2026-119154 EXPLOITDB text WORKING POC
Softek Barcode Reader Toolkit ActiveX 7.1.4.14 - 'SoftekATL.dll' Remote Buffer Overflow
EIP-2026-118943 EXPLOITDB c WORKING POC
Native Instruments (Multiple Products) - DLL Loading Arbitrary Code Execution
CVE-2011-5155 EXPLOITDB c WORKING POC
Help & Manual 5.5.1 Build 1296 - Privilege Escalation
Untrusted search path vulnerability in Help & Manual 5.5.1 Build 1296 allows local users to gain privileges via a Trojan horse ijl15.dll file in the current working directory, as demonstrated by a directory that contains a .hmxz, .hmxp, .hmskin, .hmx, .hm3, .hpj, .hlp, or .chm file. NOTE: some of these details are obtained from third party information.
EIP-2026-118255 EXPLOITDB perl WORKING POC
Amaya Web Editor 11 - Remote Overwrite (SEH)
CVE-2006-6199 EXPLOITDB perl WORKING POC
Blazevideo Blaze Dvd - Memory Corruption
Stack-based buffer overflow in BlazeVideo BlazeDVD Standard and Professional 5.0, and possibly earlier, allows remote attackers to execute arbitrary code via a long filename in a PLF playlist.
CVE-2014-5453 EXPLOITDB text WRITEUP
UBI Uplay PC < 4.6.3208 - Access Control
Ubisoft Uplay PC before 4.6.1.3217 use weak permissions (Everyone: Full Control) for the program installation directory (%PROGRAMFILES%\Ubisoft Game Launcher), which allows local users to gain privileges via a Trojan horse file.
EIP-2026-118037 EXPLOITDB text WRITEUP
Ubisoft Uplay 5.0 - Insecure File Permissions Privilege Escalation
EIP-2026-118044 EXPLOITDB text WRITEUP
Valve Steam Client Application 1559/1559 - Local Privilege Escalation
EIP-2026-118000 EXPLOITDB text WRITEUP
Telefonica O2 Connection Manager 8.7 - Service Trusted Path Privilege Escalation
EIP-2026-118099 EXPLOITDB text WRITEUP
WEG SuperDrive G2 12.0.0 - Insecure File Permissions
CVE-2011-5044 EXPLOITDB text WRITEUP
Sopcast - Access Control
SopCast 3.4.7.45585 uses weak permissions (Everyone:Full Control) for Diagnose.exe, which allows local users to execute arbitrary code by replacing Diagnose.exe with a Trojan horse program.
EIP-2026-117997 EXPLOITDB perl WORKING POC
TECO JN5 L510-DriveLink 1.482 - '.lf5' Overwrite Buffer Overflow (SEH)
EIP-2026-117998 EXPLOITDB perl WORKING POC
TECO SG2 LAD Client 3.51 - '.gen' Overwrite Buffer Overflow (SEH)
EIP-2026-117999 EXPLOITDB text WRITEUP
Telefonica O2 Connection Manager 3.4 - Local Privilege Escalation
EIP-2026-117789 EXPLOITDB perl WORKING POC
PowerCHM 5.7 - 'hhp' Local Buffer Overflow
EIP-2026-117796 EXPLOITDB text WRITEUP
Privacyware Privatefirewall 7.0 - Unquoted Service Path Privilege Escalation