Gjoko 'LiquidWorm' Krstic

684 exploits Active since Nov 2005
CVE-2009-0450 EXPLOITDB python WORKING POC
BlazeVideo HDTV Player <3.5 - Buffer Overflow
Stack-based buffer overflow in BlazeVideo HDTV Player 3.5 and earlier allows remote attackers to execute arbitrary code via a long string in a playlist (aka .plf) file.
CVE-2017-9644 EXPLOITDB HIGH text WRITEUP
ALC WebCTRL <6.5 - Code Injection
An Unquoted Search Path or Element issue was discovered in Automated Logic Corporation (ALC) ALC WebCTRL, i-Vu, SiteScan Web 6.5 and prior; ALC WebCTRL, SiteScan Web 6.1 and prior; ALC WebCTRL, i-Vu 6.0 and prior; ALC WebCTRL, i-Vu, SiteScan Web 5.5 and prior; and ALC WebCTRL, i-Vu, SiteScan Web 5.2 and prior. An unquoted search path vulnerability may allow a non-privileged local attacker to change files in the installation directory and execute arbitrary code with elevated privileges.
CVSS 7.0
EIP-2026-116945 EXPLOITDB text WRITEUP
Certec EDV atvise SCADA Server 2.5.9 - Local Privilege Escalation
EIP-2026-116772 EXPLOITDB text WRITEUP
Aloaha Credential Provider Monitor 5.0.226 - Local Privilege Escalation
EIP-2026-116959 EXPLOITDB text WORKING POC
Cimetrics BACnet Explorer 4.0 - XML External Entity Injection
EIP-2026-116817 EXPLOITDB text WRITEUP
Asseco SEE iBank FX Client 2.0.9.3 - Local Privilege Escalation
EIP-2026-116960 EXPLOITDB text WRITEUP
Cimetrics BACstac 6.2f - Local Privilege Escalation
EIP-2026-117319 EXPLOITDB text WRITEUP
iniNet SpiderControl SCADA Web Server Service 2.02 - Insecure File Permissions
CVE-2009-1660 EXPLOITDB perl WORKING POC
ViPlay3 3.0 and earlier - Stack-based Buffer Overflow via Long File Entry in .vpl File
Stack-based buffer overflow in URUWorks ViPlay3 3.0 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long file entry in a .vpl file.
EIP-2026-116531 EXPLOITDB c WORKING POC
WFTPD Pro 3.30 - Multiple Command Remote Denial of Service Vulnerabilities
CVE-2008-5667 EXPLOITDB text WORKING POC
VirusBlokAda VBA32 Personal Antivirus <3.12.8.x - DoS
The scanning engine in VirusBlokAda VBA32 Personal Antivirus 3.12.8.x allows remote attackers to cause a denial of service (memory corruption and application crash) via a malformed RAR archive.
EIP-2026-116554 EXPLOITDB python WORKING POC
WinMerge 2.12.4 - Project File Handling Stack Overflow
CVE-2014-10011 EXPLOITDB text WORKING POC
TRENDnet TV-IP422W and TV-IP422WN - Stack-Based Buffer Overflow in UltraCam ActiveX Control
Stack-based buffer overflow in UltraCamLib in the UltraCam ActiveX Control (UltraCamX.ocx) for the TRENDnet SecurView camera TV-IP422WN allows remote attackers to execute arbitrary code via a long string to the (1) CGI_ParamSet, (2) OpenFileDlg, (3) SnapFileName, (4) Password, (5) SetCGIAPNAME, (6) AccountCode, or (7) RemoteHost function.
CVE-2014-4334 EXPLOITDB perl WORKING POC
Ubisoft Rayman Legends <1.3.140380 - Buffer Overflow
Stack-based buffer overflow in Ubisoft Rayman Legends before 1.3.140380 allows remote attackers to execute arbitrary code via a long string in the "second connection" to TCP port 1001.
EIP-2026-116668 EXPLOITDB python WORKING POC
Zortam MP3 Media Studio 9.40 - Multiple Memory Corruption Vulnerabilities
EIP-2026-116464 EXPLOITDB perl WORKING POC
Unsniff Network Analyzer 1.0 - 'usnf' Local Heap Overflow (PoC)
EIP-2026-116394 EXPLOITDB text SUSPICIOUS
TECO SG2 FBD Client 3.51 - '.gfb' Overwrite Buffer Overflow (SEH) (PoC)
EIP-2026-116395 EXPLOITDB text WRITEUP
TECO TP3-PCLINK 2.1 - '.tpc' Handling Buffer Overflow (PoC)
CVE-2010-3154 EXPLOITDB c WORKING POC
Adobe Extension Manager CS5 5.0.298 - RCE
Untrusted search path vulnerability in Adobe Extension Manager CS5 5.0.298 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder as a .mxi or .mxp file.
EIP-2026-116393 EXPLOITDB text WRITEUP
TECO AP-PCLINK 1.094 - '.tpc' File Handling Buffer Overflow (PoC)
EIP-2026-116398 EXPLOITDB perl WORKING POC
TeraCopy 2.3 - 'default.mo' Language File Integer Overflow
EIP-2026-116277 EXPLOITDB python WORKING POC
SopCast 3.4.7 - 'sop://' URI Handling Remote Stack Buffer Overflow (PoC)
CVE-2012-5324 EXPLOITDB text WORKING POC
Tracker Software PDF-XChange <3.60.0128 - Buffer Overflow
Multiple buffer overflows in the Pdf Printer Preferences ActiveX Control in pdfxctrl.dll in Tracker Software PDF-XChange 3.60.0128 allow remote attackers to execute arbitrary code via a long string in the (1) sub_path parameter to the StoreInRegistry function or (2) sub_key parameter to the InitFromRegistry function.
EIP-2026-116275 EXPLOITDB text WORKING POC
Sony PC Companion 2.1 - 'DownloadURLToFile()' Unicode Stack Buffer Overflow
EIP-2026-116274 EXPLOITDB text WORKING POC
Sony PC Companion 2.1 - 'CheckCompatibility()' Unicode Stack Buffer Overflow