LAKSHMIKANTHAN K (letchupkt)

4 exploits Active since Nov 2025
CVE-2025-48593 NOMISEC HIGH WRITEUP
bta_hf_client - Use After Free
In bta_hf_client_cb_init of bta_hf_client_main.cc, there is a possible remote code execution due to a use after free. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.
2 stars
CVSS 8.0
CVE-2025-55182 GITLAB CRITICAL SUSPICIOUS
React Server Components <19.2.0 - RCE
A pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1.1, and 19.2.0 including the following packages: react-server-dom-parcel, react-server-dom-turbopack, and react-server-dom-webpack. The vulnerable code unsafely deserializes payloads from HTTP requests to Server Function endpoints.
1 stars
CVSS 10.0
CVE-2025-66478 GITLAB SUSPICIOUS
Rejected
Rejected reason: This CVE is a duplicate of CVE-2025-55182.
1 stars
CVE-2025-13780 GITLAB CRITICAL WORKING POC
Pgadmin 4 < 9.10 - Code Injection
pgAdmin versions up to 9.10 are affected by a Remote Code Execution (RCE) vulnerability that occurs when running in server mode and performing restores from PLAIN-format dump files. This issue allows attackers to inject and execute arbitrary commands on the server hosting pgAdmin, posing a critical risk to the integrity and security of the database management system and underlying data.
CVSS 9.1