JonathanWilbur

2 exploits Active since Nov 2018

CVE-2018-19131 NOMISEC MEDIUM WORKING POC

Squid < 4.4 - XSS

Squid before 4.4 has XSS via a crafted X.509 certificate during HTTP(S) error page generation for certificate errors.

19 stars

CVSS 6.1

View Code

CVE-2019-5010 NOMISEC HIGH WORKING POC

Python <3.6.6 - DoS

An exploitable denial-of-service vulnerability exists in the X509 certificate parser of Python.org Python 2.7.11 / 3.6.6. A specially crafted X509 certificate can cause a NULL pointer dereference, resulting in a denial of service. An attacker can initiate or accept TLS connections using crafted certificates to trigger this vulnerability.

CVSS 7.5

View Code