Mayur Parmar (th3cyb3rc0p)

CVE-2020-36952 EXPLOITDB HIGH text WRITEUP

IObit Uninstaller 10 Pro - Privilege Escalation

IObit Uninstaller 10 Pro contains an unquoted service path vulnerability that allows local users to potentially execute code with elevated system privileges. Attackers can exploit the unquoted service path in the IObit Uninstaller Service to insert malicious code that would execute with SYSTEM-level permissions during service startup.

CVSS 7.8

View Code

CVE-2020-29474 EXPLOITDB CRITICAL text WORKING POC

EGavilan Media EGM Address Book 1.0 - SQL Injection

EGavilan Media EGM Address Book 1.0 contains a SQL injection vulnerability. An attacker can gain Admin Panel access using malicious SQL injection queries to perform remote arbitrary code execution.

CVSS 9.8

View Code