Julian Horoszkiewicz

5 exploits Active since Mar 2015
CVE-2023-37250 NOMISEC HIGH WORKING POC
Unity Parsec < 9.0 - TOCTOU Race Condition
Unity Parsec has a TOCTOU race condition that permits local attackers to escalate privileges to SYSTEM if Parsec was installed in "Per User" mode. The application intentionally launches DLLs from a user-owned directory but intended to always perform integrity verification of those DLLs. This affects Parsec Loader versions through 8. Parsec Loader 9 is a fixed version.
2 stars
CVSS 7.0
CVE-2024-29863 NOMISEC HIGH WORKING POC
Qlik Qlikview <May 2022 SR3 - Privilege Escalation
A race condition in the installer executable in Qlik Qlikview before versions May 2022 SR3 (12.70.20300) and May 2023 SR2 (12,80.20200) may allow an existing lower privileged user to cause code to be executed in the context of a Windows Administrator.
CVSS 7.8
EIP-2026-110318 EXPLOITDB text WORKING POC
openSIS 5.1 - 'ajax.php' Local File Inclusion
EIP-2026-105291 EXPLOITDB text WORKING POC
ATutor 2.1 - 'tool_file' Local File Inclusion
CVE-2014-7884 EXPLOITDB text WORKING POC
HP ArcSight Logger <6.0P1 - Unspecified Vuln
Multiple unspecified vulnerabilities in HP ArcSight Logger before 6.0P1 have unknown impact and remote authenticated attack vectors.