Ismail Tasdelen

76 exploits Active since Aug 2018
CVE-2020-37212 EXPLOITDB HIGH python WORKING POC
SpotMSN < 2.4.6 - Denial of Service via Registration Name Input Field
SpotMSN 2.4.6 contains a denial of service vulnerability in the registration name input field that allows attackers to crash the application. Attackers can generate a 1000-character payload and paste it into the 'Name' field to trigger an application crash.
CVSS 7.5
CVE-2020-37211 EXPLOITDB HIGH python WORKING POC
SpotIM < 2.2 - Denial of Service via Registration Name Field Buffer Overflow
SpotIM 2.2 contains a denial of service vulnerability that allows attackers to crash the application by inputting a large buffer in the registration name field. Attackers can generate a 1000-character payload and paste it into the 'Name' field to trigger an application crash.
CVSS 7.5
CVE-2020-37210 EXPLOITDB HIGH python WORKING POC
SpotIE < 2.9.5 - Denial of Service via Registration Key Input Buffer Overflow
SpotIE 2.9.5 contains a denial of service vulnerability in the registration key input that allows attackers to crash the application. Attackers can generate a 1000-character buffer payload and paste it into the 'Key' field to trigger an application crash.
CVSS 7.5
CVE-2020-37209 EXPLOITDB HIGH python WORKING POC
SpotFTP 3.0.0.0 - Denial of Service via Registration Name Input Field
SpotFTP 3.0.0.0 contains a denial of service vulnerability in the registration name input field that allows attackers to crash the application. Attackers can generate a 1000-character buffer payload and paste it into the 'Name' field to trigger an application crash.
CVSS 7.5
CVE-2020-37208 EXPLOITDB HIGH python WORKING POC
SpotFTP 3.0.0.0 - Denial of Service via Registration Key Input Buffer Overflow
SpotFTP 3.0.0.0 contains a buffer overflow vulnerability in the registration key input field that allows attackers to crash the application. Attackers can generate a 1000-character payload and paste it into the 'Key' field to trigger an application crash and denial of service.
CVSS 7.5
CVE-2020-37206 EXPLOITDB HIGH python WORKING POC
ShareAlarmPro - Denial of Service via Oversized Registration Key
ShareAlarmPro contains a denial of service vulnerability that allows attackers to crash the application by supplying an oversized registration key. Attackers can generate a 1000-character buffer payload to trigger an application crash when pasted into the registration key field.
CVSS 7.5
CVE-2020-37205 EXPLOITDB HIGH python WORKING POC
RemShutdown 2.9.0.0 - Denial of Service via Registration Name Field Overflow
RemShutdown 2.9.0.0 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the 'Name' registration field. Attackers can generate a 1000-character buffer payload and paste it into the registration name field to trigger an application crash.
CVSS 7.5
CVE-2020-37204 EXPLOITDB HIGH python WORKING POC
RemShutdown 2.9.0.0 - Denial of Service via Registration Key Input
RemShutdown 2.9.0.0 contains a denial of service vulnerability in its registration key input that allows attackers to crash the application. Attackers can generate a 1000-character buffer payload and paste it into the registration key field to trigger an application crash.
CVSS 7.5
CVE-2020-37202 EXPLOITDB HIGH python WORKING POC
Nsasoft Nsauditor NetworkSleuth 3.0.0.0 - Denial of Service via Oversized Registration Key
NetworkSleuth 3.0.0.0 contains a denial of service vulnerability that allows attackers to crash the application by supplying an oversized registration key. Attackers can generate a 1000-character buffer payload and paste it into the registration key field to trigger an application crash.
CVSS 7.5
CVE-2020-37201 EXPLOITDB HIGH python WORKING POC
NetShareWatcher 1.5.8.0 - Buffer Overflow
NetShareWatcher 1.5.8.0 contains a buffer overflow vulnerability in the registration name input that allows attackers to crash the application. Attackers can generate a 1000-character payload and paste it into the 'Name' field to trigger an application crash.
CVSS 7.5
CVE-2020-37200 EXPLOITDB HIGH python WORKING POC
NetShareWatcher 1.5.8.0 - Buffer Overflow
NetShareWatcher 1.5.8.0 contains a buffer overflow vulnerability in the registration key input that allows attackers to crash the application by supplying oversized input. Attackers can generate a 1000-character payload and paste it into the registration key field to trigger an application crash.
CVSS 7.5
CVE-2020-37199 EXPLOITDB HIGH python WORKING POC
NBMonitor < 1.6.6.0 - Denial of Service via Registration Key Input
NBMonitor 1.6.6.0 contains a denial of service vulnerability in its registration key input that allows attackers to crash the application. Attackers can generate a 1000-character buffer payload and paste it into the 'Key' field to trigger an application crash.
CVSS 7.5
CVE-2020-37197 EXPLOITDB HIGH python WORKING POC
Dnss Domain Name Search Software - Denial of Service via Name Input Field Buffer Overflow
Dnss Domain Name Search Software contains a denial of service vulnerability that allows attackers to crash the application by overflowing the 'Name' input field. Attackers can generate a 1000-character buffer payload and paste it into the registration name field to trigger an application crash.
CVSS 7.5
CVE-2020-37196 EXPLOITDB HIGH python WORKING POC
Dnss Domain Name Search Software - Denial of Service via Oversized Registration Key
Dnss Domain Name Search Software contains a denial of service vulnerability that allows attackers to crash the application by providing an oversized registration key. Attackers can generate a 1000-character buffer payload and paste it into the registration key field to trigger an application crash.
CVSS 7.5
CVE-2020-37195 EXPLOITDB HIGH python WORKING POC
BlueAuditor 1.7.2.0 - Denial of Service via Registration Name Input Field
BlueAuditor 1.7.2.0 contains a denial of service vulnerability in the registration name input field that allows attackers to crash the application. Attackers can generate a 1000-character buffer payload and paste it into the 'Name' field to trigger an application crash.
CVSS 7.5
CVE-2020-37194 EXPLOITDB HIGH python WORKING POC
Nsasoft Backup Key Recovery 2.2.5 - Denial of Service via Long Registration Key Input
Backup Key Recovery 2.2.5 contains a denial of service vulnerability that allows attackers to crash the application by supplying an overly long registration key. Attackers can generate a 1000-character payload file and paste it into the registration key field to trigger an application crash.
CVSS 7.5
CVE-2020-37189 EXPLOITDB HIGH python WORKING POC
TaskCanvas 1.4.0 - Denial of Service via Registration Code Input Field
TaskCanvas 1.4.0 contains a denial of service vulnerability in the registration code input field that allows attackers to crash the application. Attackers can generate a 1000-character buffer payload and paste it into the registration field to trigger an application crash.
CVSS 7.5
CVE-2020-37188 EXPLOITDB HIGH python WORKING POC
SpotOutlook 1.2.6 - Denial of Service via Registration Name Input Buffer Overflow
SpotOutlook 1.2.6 contains a denial of service vulnerability in the registration name input field that allows attackers to crash the application. Attackers can overwrite the buffer by pasting 1000 'A' characters into the 'Name' field, causing the application to become unresponsive.
CVSS 7.5
CVE-2020-37187 EXPLOITDB HIGH python WORKING POC
SpotDialup 1.6.7 - Denial of Service via Registration Name Input Field
SpotDialup 1.6.7 contains a denial of service vulnerability in the registration name input field that allows attackers to crash the application. Attackers can generate a 1000-character buffer payload and paste it into the 'Name' field to trigger an application crash.
CVSS 7.5
CVE-2020-37185 EXPLOITDB HIGH python WORKING POC
Nsasoft Nsauditor Backup Key Recovery 2.2.5 - Denial of Service via Name Input Field Overflow
Backup Key Recovery 2.2.5 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the 'Name' input field. Attackers can generate a 1000-character payload and paste it into the registration name field to trigger an application crash.
CVSS 7.5
CVE-2020-37180 EXPLOITDB HIGH python WORKING POC
Nsasoft Nsauditor GTalk Password Finder 2.2.1 - Denial of Service via Oversized Registration Key
GTalk Password Finder 2.2.1 contains a denial of service vulnerability that allows attackers to crash the application by supplying an oversized registration key. Attackers can generate a 1000-character payload and paste it into the 'Key' field to trigger an application crash.
CVSS 7.5
CVE-2020-37179 EXPLOITDB HIGH python WORKING POC
APKF Product Key Finder <2.5.8.0 - DoS
APKF Product Key Finder 2.5.8.0 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the 'Name' input field. Attackers can generate a 1000-character payload and paste it into the registration name field to trigger an application crash.
CVSS 7.5
CVE-2020-37207 EXPLOITDB HIGH python WORKING POC
SpotDialup < 1.6.7 - Denial of Service via Registration Key Input Field
SpotDialup 1.6.7 contains a denial of service vulnerability in the registration key input field that allows attackers to crash the application. Attackers can generate a 1000-character buffer payload and paste it into the 'Key' field to trigger an application crash.
CVSS 7.5
CVE-2018-18307 EXPLOITDB MEDIUM text WORKING POC
AlchemyCMS 4.1.0 - Stored Cross-Site Scripting via Admin Pictures Image Field
A Stored XSS vulnerability has been discovered in version 4.1.0 of AlchemyCMS via the /admin/pictures image field. NOTE: the vendor's position is that this is not a valid report: "The researcher used an authorized cookie to perform the request to a password-protected route. Without that session cookie, the request would have been rejected as unauthorized."
CVSS 6.1
CVE-2018-17591 EXPLOITDB MEDIUM text WORKING POC
AirTies Air 5343v2 1.0.0.18 - Cross-Site Scripting via top.html productboardtype Parameter
AirTies Air 5343v2 devices with software 1.0.0.18 have XSS via the top.html productboardtype parameter.
CVSS 6.1