Ivan Markovic

5 exploits Active since Dec 2006
CVE-2026-38950 WRITEUP HIGH WRITEUP
ESA AnomalyMatch < 1.3.1 - Remote Code Execution via Unsafe Model Checkpoint Deserialization
An issue in ESA AnomalyMatch before 1.3.1 allow attackers to execute arbitrary code via crafted model checkpoint files. The affected components load model files from session directories using torch.load() with unrestricted deserialization.
CVSS 7.8
EIP-2026-119234 EXPLOITDB c WORKING POC
UltraVNC 1.0.8.2 - DLL Loading Arbitrary Code Execution
CVE-2006-6387 EXPLOITDB text WRITEUP
LINK Content Management Server - SQL Injection via IDMeniGlavni or IDStranicaPodaci Parameter
Multiple SQL injection vulnerabilities in LINK Content Management Server (CMS) allow remote attackers to execute arbitrary SQL commands via the (1) IDMeniGlavni parameter to navigacija.php, and the (2) IDStranicaPodaci parameter to prikazInformacije.php. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.
CVE-2006-6387 EXPLOITDB text WRITEUP
LINK Content Management Server - SQL Injection via IDMeniGlavni or IDStranicaPodaci Parameter
Multiple SQL injection vulnerabilities in LINK Content Management Server (CMS) allow remote attackers to execute arbitrary SQL commands via the (1) IDMeniGlavni parameter to navigacija.php, and the (2) IDStranicaPodaci parameter to prikazInformacije.php. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.
EIP-2026-101308 EXPLOITDB text WRITEUP
Huawei HG510 - Multiple Cross-Site Request Forgery Vulnerabilities