Ismail Tasdelen

76 exploits Active since Aug 2018
CVE-2020-37212 EXPLOITDB HIGH python WORKING POC
SpotMSN 2.4.6 - DoS
SpotMSN 2.4.6 contains a denial of service vulnerability in the registration name input field that allows attackers to crash the application. Attackers can generate a 1000-character payload and paste it into the 'Name' field to trigger an application crash.
CVSS 7.5
CVE-2020-37211 EXPLOITDB HIGH python WORKING POC
SpotIM 2.2 - DoS
SpotIM 2.2 contains a denial of service vulnerability that allows attackers to crash the application by inputting a large buffer in the registration name field. Attackers can generate a 1000-character payload and paste it into the 'Name' field to trigger an application crash.
CVSS 7.5
CVE-2020-37210 EXPLOITDB HIGH python WORKING POC
SpotIE 2.9.5 - DoS
SpotIE 2.9.5 contains a denial of service vulnerability in the registration key input that allows attackers to crash the application. Attackers can generate a 1000-character buffer payload and paste it into the 'Key' field to trigger an application crash.
CVSS 7.5
CVE-2020-37209 EXPLOITDB HIGH python WORKING POC
SpotFTP 3.0.0.0 - DoS
SpotFTP 3.0.0.0 contains a denial of service vulnerability in the registration name input field that allows attackers to crash the application. Attackers can generate a 1000-character buffer payload and paste it into the 'Name' field to trigger an application crash.
CVSS 7.5
CVE-2020-37208 EXPLOITDB HIGH python WORKING POC
SpotFTP 3.0.0.0 - Buffer Overflow
SpotFTP 3.0.0.0 contains a buffer overflow vulnerability in the registration key input field that allows attackers to crash the application. Attackers can generate a 1000-character payload and paste it into the 'Key' field to trigger an application crash and denial of service.
CVSS 7.5
CVE-2020-37206 EXPLOITDB HIGH python WORKING POC
ShareAlarmPro - DoS
ShareAlarmPro contains a denial of service vulnerability that allows attackers to crash the application by supplying an oversized registration key. Attackers can generate a 1000-character buffer payload to trigger an application crash when pasted into the registration key field.
CVSS 7.5
CVE-2020-37205 EXPLOITDB HIGH python WORKING POC
RemShutdown 2.9.0.0 - DoS
RemShutdown 2.9.0.0 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the 'Name' registration field. Attackers can generate a 1000-character buffer payload and paste it into the registration name field to trigger an application crash.
CVSS 7.5
CVE-2020-37204 EXPLOITDB HIGH python WORKING POC
RemShutdown 2.9.0.0 - DoS
RemShutdown 2.9.0.0 contains a denial of service vulnerability in its registration key input that allows attackers to crash the application. Attackers can generate a 1000-character buffer payload and paste it into the registration key field to trigger an application crash.
CVSS 7.5
CVE-2020-37202 EXPLOITDB HIGH python WORKING POC
NetworkSleuth 3.0.0.0 - DoS
NetworkSleuth 3.0.0.0 contains a denial of service vulnerability that allows attackers to crash the application by supplying an oversized registration key. Attackers can generate a 1000-character buffer payload and paste it into the registration key field to trigger an application crash.
CVSS 7.5
CVE-2020-37201 EXPLOITDB HIGH python WORKING POC
NetShareWatcher 1.5.8.0 - Buffer Overflow
NetShareWatcher 1.5.8.0 contains a buffer overflow vulnerability in the registration name input that allows attackers to crash the application. Attackers can generate a 1000-character payload and paste it into the 'Name' field to trigger an application crash.
CVSS 7.5
CVE-2020-37200 EXPLOITDB HIGH python WORKING POC
NetShareWatcher 1.5.8.0 - Buffer Overflow
NetShareWatcher 1.5.8.0 contains a buffer overflow vulnerability in the registration key input that allows attackers to crash the application by supplying oversized input. Attackers can generate a 1000-character payload and paste it into the registration key field to trigger an application crash.
CVSS 7.5
CVE-2020-37199 EXPLOITDB HIGH python WORKING POC
NBMonitor 1.6.6.0 - DoS
NBMonitor 1.6.6.0 contains a denial of service vulnerability in its registration key input that allows attackers to crash the application. Attackers can generate a 1000-character buffer payload and paste it into the 'Key' field to trigger an application crash.
CVSS 7.5
CVE-2020-37197 EXPLOITDB HIGH python WORKING POC
Dnss - DoS
Dnss Domain Name Search Software contains a denial of service vulnerability that allows attackers to crash the application by overflowing the 'Name' input field. Attackers can generate a 1000-character buffer payload and paste it into the registration name field to trigger an application crash.
CVSS 7.5
CVE-2020-37196 EXPLOITDB HIGH python WORKING POC
Dnss - DoS
Dnss Domain Name Search Software contains a denial of service vulnerability that allows attackers to crash the application by providing an oversized registration key. Attackers can generate a 1000-character buffer payload and paste it into the registration key field to trigger an application crash.
CVSS 7.5
CVE-2020-37195 EXPLOITDB HIGH python WORKING POC
BlueAuditor <1.7.2.0 - DoS
BlueAuditor 1.7.2.0 contains a denial of service vulnerability in the registration name input field that allows attackers to crash the application. Attackers can generate a 1000-character buffer payload and paste it into the 'Name' field to trigger an application crash.
CVSS 7.5
CVE-2020-37194 EXPLOITDB HIGH python WORKING POC
Backup Key Recovery <2.2.5 - DoS
Backup Key Recovery 2.2.5 contains a denial of service vulnerability that allows attackers to crash the application by supplying an overly long registration key. Attackers can generate a 1000-character payload file and paste it into the registration key field to trigger an application crash.
CVSS 7.5
CVE-2020-37189 EXPLOITDB HIGH python WORKING POC
TaskCanvas 1.4.0 - DoS
TaskCanvas 1.4.0 contains a denial of service vulnerability in the registration code input field that allows attackers to crash the application. Attackers can generate a 1000-character buffer payload and paste it into the registration field to trigger an application crash.
CVSS 7.5
CVE-2020-37188 EXPLOITDB HIGH python WORKING POC
SpotOutlook 1.2.6 - DoS
SpotOutlook 1.2.6 contains a denial of service vulnerability in the registration name input field that allows attackers to crash the application. Attackers can overwrite the buffer by pasting 1000 'A' characters into the 'Name' field, causing the application to become unresponsive.
CVSS 7.5
CVE-2020-37187 EXPLOITDB HIGH python WORKING POC
SpotDialup 1.6.7 - DoS
SpotDialup 1.6.7 contains a denial of service vulnerability in the registration name input field that allows attackers to crash the application. Attackers can generate a 1000-character buffer payload and paste it into the 'Name' field to trigger an application crash.
CVSS 7.5
CVE-2020-37185 EXPLOITDB HIGH python WORKING POC
Backup Key Recovery <2.2.5 - DoS
Backup Key Recovery 2.2.5 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the 'Name' input field. Attackers can generate a 1000-character payload and paste it into the registration name field to trigger an application crash.
CVSS 7.5
CVE-2020-37180 EXPLOITDB HIGH python WORKING POC
GTalk Password Finder 2.2.1 - DoS
GTalk Password Finder 2.2.1 contains a denial of service vulnerability that allows attackers to crash the application by supplying an oversized registration key. Attackers can generate a 1000-character payload and paste it into the 'Key' field to trigger an application crash.
CVSS 7.5
CVE-2020-37179 EXPLOITDB HIGH python WORKING POC
APKF Product Key Finder <2.5.8.0 - DoS
APKF Product Key Finder 2.5.8.0 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the 'Name' input field. Attackers can generate a 1000-character payload and paste it into the registration name field to trigger an application crash.
CVSS 7.5
CVE-2020-37207 EXPLOITDB HIGH python WORKING POC
SpotDialup 1.6.7 - DoS
SpotDialup 1.6.7 contains a denial of service vulnerability in the registration key input field that allows attackers to crash the application. Attackers can generate a 1000-character buffer payload and paste it into the 'Key' field to trigger an application crash.
CVSS 7.5
CVE-2018-18307 EXPLOITDB MEDIUM text WORKING POC
Alchemy-cms Alchemy Cms - XSS
A Stored XSS vulnerability has been discovered in version 4.1.0 of AlchemyCMS via the /admin/pictures image field. NOTE: the vendor's position is that this is not a valid report: "The researcher used an authorized cookie to perform the request to a password-protected route. Without that session cookie, the request would have been rejected as unauthorized."
CVSS 6.1
CVE-2018-17591 EXPLOITDB MEDIUM text WORKING POC
AirTies Air 5343v2 <1.0.0.18 - XSS
AirTies Air 5343v2 devices with software 1.0.0.18 have XSS via the top.html productboardtype parameter.
CVSS 6.1