LiquidWorm - Security Researcher - Exploit Intelligence Platform

EIP-2026-103756 EXPLOITDB text WRITEUP

ABB Cylon FLXeon 9.3.4 - Cross-Site Request Forgery

View Code

EIP-2026-103755 EXPLOITDB text WRITEUP

ABB Cylon Aspect 3.08.03 (CookieDB) - SQL Injection

View Code

EIP-2026-103754 EXPLOITDB text WORKING POC

ABB Cylon Aspect 3.08.02 - PHP Session Fixation

View Code

CVE-2024-48846 EXPLOITDB HIGH html WORKING POC

ABB Aspect-ent-2 Firmware < 3.08.03 - CSRF

Cross Site Request Forgery vulnerabilities where found providing a potiential for exposing sensitive information or changing system settings. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02

CVSS 7.1

View Code

CVE-2024-51546 EXPLOITDB HIGH text WRITEUP

ABB ASPECT Enterprise, NEXUS Series, MATRIX Series <3.08.02 - Credentials Disclosure

Credentials Disclosure vulnerabilities allow access to on board project back-up bundles. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02

CVSS 7.5

View Code

CVE-2024-48839 EXPLOITDB CRITICAL text WORKING POC

ABB Aspect-ent-2 Firmware < 3.08.03 - Code Injection

Improper Input Validation vulnerability allows Remote Code Execution. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02

CVSS 10.0

View Code

CVE-2024-6516 EXPLOITDB CRITICAL text WORKING POC

ABB Aspect-ent-2 Firmware < 3.08.03 - XSS

Cross Site Scripting vulnerabilities where found providing a potential for malicious scripts to be injected into a client browser. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02

CVSS 9.0

View Code

CVE-2024-6516 EXPLOITDB CRITICAL text WORKING POC

ABB Aspect-ent-2 Firmware < 3.08.03 - XSS

Cross Site Scripting vulnerabilities where found providing a potential for malicious scripts to be injected into a client browser. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02

CVSS 9.0

View Code

CVE-2024-6516 EXPLOITDB CRITICAL text WORKING POC

ABB Aspect-ent-2 Firmware < 3.08.03 - XSS

Cross Site Scripting vulnerabilities where found providing a potential for malicious scripts to be injected into a client browser. Affected products: ABB ASPECT - Enterprise v3.08.02; NEXUS Series v3.08.02; MATRIX Series v3.08.02

CVSS 9.0

View Code

CVE-2024-48845 EXPLOITDB CRITICAL text WORKING POC

ABB ASPECT, NEXUS, and MATRIX Series <3.07.02 - Weak Password Reset Rules

Weak Password Reset Rules vulnerabilities where found providing a potiential for the storage of weak passwords that could facilitate unauthorized admin/application access. Affected products: ABB ASPECT - Enterprise v3.07.02; NEXUS Series v3.07.02; MATRIX Series v3.07.02

CVSS 9.4

View Code

EIP-2026-103381 EXPLOITDB text WORKING POC

RoyalTSX 6.0.1 - RTSZ File Handling Heap Memory Corruption PoC

View Code

CVE-2012-0677 EXPLOITDB python WORKING POC

Apple iTunes <10.6.3 - Buffer Overflow

Heap-based buffer overflow in Apple iTunes before 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted .m3u playlist.

View Code

CVE-2010-2204 EXPLOITDB c WORKING POC

Adobe Acrobat - Denial of Service

Unspecified vulnerability in Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.2.3 on Windows and Mac OS X, allows attackers to cause a denial of service or possibly execute arbitrary code via unknown vectors.

View Code

EIP-2026-103371 EXPLOITDB text WORKING POC

Google Chrome Browser 111.0.5563.64 - AXPlatformNodeCocoa Fatal OOM/Crash (macOS)

View Code

EIP-2026-103342 EXPLOITDB text WORKING POC

WordPress Plugin OneSignal 1.17.5 - 'subdomain' Persistent Cross-Site Scripting

View Code

EIP-2026-103149 EXPLOITDB text WRITEUP

Iris ID IrisAccess iCAM4000/iCAM7000 - Hard-Coded Credentials Remote Shell Access

View Code

EIP-2026-102856 EXPLOITDB text WORKING POC

GNU Barcode 0.99 - Memory Leak

View Code

EIP-2026-102575 EXPLOITDB python WORKING POC

DCMTK 3.6.0 storescp - Stack Buffer Overflow

View Code

EIP-2026-102622 EXPLOITDB perl WORKING POC

JDKChat 1.5 - Remote Integer Overflow (PoC)

View Code

EIP-2026-102543 EXPLOITDB text WORKING POC

XpoLog Center 6 - Remote Command Execution / Cross-Site Request Forgery

View Code

EIP-2026-102441 EXPLOITDB html WORKING POC

NethServer 7.3.1611 - Cross-Site Request Forgery (Create User / Enable SSH Access)

View Code

EIP-2026-102419 EXPLOITDB text WORKING POC

Sakai 10.7 - Multiple Vulnerabilities

View Code

CVE-2012-1049 EXPLOITDB text WORKING POC

ManageEngine ADManager Plus <5.2.5210 - XSS

Multiple cross-site scripting (XSS) vulnerabilities in ManageEngine ADManager Plus 5.2 Build 5210 allow remote attackers to inject arbitrary web script or HTML via the (1) domainName parameter to jsp/AddDC.jsp or (2) operation parameter to DomainConfig.do.

View Code

CVE-2012-1049 EXPLOITDB text WORKING POC

ManageEngine ADManager Plus <5.2.5210 - XSS

Multiple cross-site scripting (XSS) vulnerabilities in ManageEngine ADManager Plus 5.2 Build 5210 allow remote attackers to inject arbitrary web script or HTML via the (1) domainName parameter to jsp/AddDC.jsp or (2) operation parameter to DomainConfig.do.

View Code

EIP-2026-102396 EXPLOITDB text WRITEUP

LogicalDOC Enterprise 7.7.4 - User Enumeration

View Code