Matt Johnston

3 exploits Active since May 2025
CVE-2025-47203 WRITEUP MEDIUM WRITEUP
Dropbear SSH <2025.88 - Command Injection
dbclient in Dropbear SSH before 2025.88 allows command injection via an untrusted hostname argument, because a shell is used.
CVSS 4.5
EIP-2026-104600 EXPLOITDB text WRITEUP
MacOSXLabs RsyncX 2.1 - Insecure Temporary File Creation
EIP-2026-104601 EXPLOITDB text WORKING POC
MacOSXLabs RsyncX 2.1 - Local Privilege Escalation