Ivan Nikolsky

2 exploits Active since Nov 2025

CVE-2021-47796 EXPLOITDB CRITICAL text WORKING POC

Denver SHC-150 Smart Wifi Camera - RCE

Denver SHC-150 Smart Wifi Camera contains a hardcoded telnet credential vulnerability that allows unauthenticated attackers to access a Linux shell. Attackers can connect to port 23 using the default credential to execute arbitrary commands on the camera's operating system.

CVSS 9.8

View Code

CVE-2021-4469 EXPLOITDB HIGH text WORKING POC

Denver SHO-110 - Info Disclosure

Denver SHO-110 IP cameras expose a secondary HTTP service on TCP port 8001 that provides access to a '/snapshot' endpoint without authentication. While the primary web interface on port 80 enforces authentication, the backdoor service allows any remote attacker to retrieve image snapshots by directly requesting the 'snapshot' endpoint. An attacker can repeatedly collect snapshots and reconstruct the camera stream, compromising the confidentiality of the monitored environment.

View Code