Neal Poole

3 exploits Active since Jun 2013
CVE-2020-1920 WRITEUP HIGH WRITEUP
React Native 0.59.0-0.64.0 - Regular Expression Denial of Service in validateBaseUrl
A regular expression denial of service (ReDoS) vulnerability in the validateBaseUrl function can cause the application to use excessive resources, become unresponsive, or crash. This was introduced in react-native version 0.59.0 and fixed in version 0.64.1.
CVSS 7.5
CVE-2013-4660 METASPLOIT ruby WORKING POC
nodeca/js-yaml < 2.0.5 - Remote Code Execution via Unsafe YAML Tag Parsing
The JS-YAML module before 2.0.5 for Node.js parses input without properly considering the unsafe !!js/function tag, which allows remote attackers to execute arbitrary code via a crafted string that triggers an eval operation.
EIP-2026-104358 EXPLOITDB text WRITEUP
Nginx 0.6.x - Arbitrary Code Execution NullByte Injection