Jeffrey Bencteux - Security Researcher - Exploit Intelligence Platform

CVE-2022-29869 WRITEUP MEDIUM WRITEUP

cifs-utils <= 6.14 - Information Disclosure via Verbose Logging

cifs-utils through 6.14, with verbose logging, can cause an information leak when a file contains = (equal sign) characters but is not a valid credentials file.

CVSS 5.3

View Code

CVE-2024-37879 WRITEUP MEDIUM WRITEUP

User-friendly SVN <v1.0.12 - Code Injection

Improper input validation in /admin/config/save in User-friendly SVN (USVN) before v1.0.12 and below allows administrators to execute arbitrary code via the fields "siteTitle", "siteIco" and "siteLogo".

CVSS 4.8

View Code

CVE-2023-53912 EXPLOITDB MEDIUM text WRITEUP

USB Flash Drives Control 4.1.0.0 - Code Injection

USB Flash Drives Control 4.1.0.0 contains an unquoted service path vulnerability in its service configuration that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in 'C:\Program Files\USB Flash Drives Control\usbcs.exe' to inject malicious executables and escalate privileges on Windows systems.

CVSS 6.2

View Code