Ivan Marmolejo

9 exploits Active since Feb 2026
CVE-2019-25354 EXPLOITDB HIGH text WORKING POC
iSmartViewPro 1.3.34 - Denial of Service via Camera ID Input Buffer Overflow
iSmartViewPro 1.3.34 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the camera ID input field. Attackers can paste a 257-character buffer into the camera DID and password fields to trigger an application crash on iOS devices.
CVSS 7.5
CVE-2020-37175 EXPLOITDB HIGH python WORKING POC
P2PWIFICAM2 for iOS 10.4.1 - Denial of Service via Camera ID Input Buffer Overflow
P2PWIFICAM2 for iOS 10.4.1 contains a denial of service vulnerability that allows attackers to crash the application by manipulating the Camera ID input field. Attackers can paste a 257-character buffer into the Camera ID field to trigger an application crash on iOS devices.
CVSS 7.5
CVE-2020-37143 EXPLOITDB HIGH python WORKING POC
ProficySCADA for iOS <5.0.25920 - DoS
ProficySCADA for iOS 5.0.25920 contains a denial of service vulnerability that allows attackers to crash the application by manipulating the password input field. Attackers can overwrite the password field with 257 bytes of repeated characters to trigger an application crash and prevent successful authentication.
CVSS 7.5
CVE-2020-37140 EXPLOITDB MEDIUM python WORKING POC
Everest 5.50.2100 - Denial of Service via File Open Dialog Buffer Overflow
Everest, later referred to as AIDA64, 5.50.2100 contains a denial of service vulnerability that allows local attackers to crash the application by manipulating file open functionality. Attackers can generate a 450-byte buffer of repeated characters and paste it into the file open dialog to trigger an application crash.
CVSS 5.5
CVE-2020-37139 EXPLOITDB HIGH python WORKING POC
Odin Secure FTP Expert 7.6.3 - Buffer Overflow
Odin Secure FTP Expert 7.6.3 contains a local denial of service vulnerability that allows attackers to crash the application by manipulating site information fields. Attackers can generate a buffer overflow by pasting 108 bytes of repeated characters into connection fields, causing the application to crash.
CVSS 8.4
CVE-2019-25341 EXPLOITDB HIGH python WORKING POC
iNetTools for iOS 8.20 - Denial of Service via Whois Domain Name Field Buffer Overflow
iNetTools for iOS 8.20 contains a denial of service vulnerability in the Whois feature that allows attackers to crash the application by manipulating input. Attackers can paste a specially crafted 98-character buffer into the Domain Name field to trigger an application crash.
CVSS 7.5
CVE-2019-25339 EXPLOITDB HIGH python WORKING POC
GHIA CamIP 1.2 - Denial of Service via Password Input Field
GHIA CamIP 1.2 for iOS contains a denial of service vulnerability in the password input field that allows attackers to crash the application. Attackers can paste a 33-character buffer of repeated characters into the password field to trigger an application crash on iOS devices.
CVSS 7.5
EIP-2026-117667 EXPLOITDB text WRITEUP
National Instruments Circuit Design Suite 14.0 - Local Privilege Escalation
EIP-2026-117805 EXPLOITDB text WRITEUP
QNAP NetBak Replicator 4.5.6.0607 - 'QVssService' Unquoted Service Path