Osanda Malith Jayathissa

18 exploits Active since Jun 2014
CVE-2015-4870 NOMISEC WORKING POC
Oracle MySQL Server <5.5.45-5.6.26 - DoS
Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier, and 5.6.26 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server : Parser.
3 stars
CVE-2014-3544 WRITEUP WRITEUP
Moodle < 2.3.11, 2.4.x < 2.4.11, 2.5.x < 2.5.7, 2.6.x < 2.6.4, 2.7.x < 2.7.1 - Stored XSS via Skype ID
Cross-site scripting (XSS) vulnerability in user/profile.php in Moodle through 2.3.11, 2.4.x before 2.4.11, 2.5.x before 2.5.7, 2.6.x before 2.6.4, and 2.7.x before 2.7.1 allows remote authenticated users to inject arbitrary web script or HTML via the Skype ID profile field.
CVE-2014-4154 EXPLOITDB text WRITEUP
ZTE ZXV10 W300 Firmware W300V1.0.0a_ZRD_LK - Unprotected Credential Exposure via tc2wanfun.js
ZTE ZXV10 W300 router with firmware W300V1.0.0a_ZRD_LK stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain the PPPoE/PPPoA password via a direct request for basic/tc2wanfun.js.
CVE-2014-4019 EXPLOITDB HIGH text WRITEUP
ZTE ZXV10 W300 W300V1.0.0a_ZRD_LK - Unauthenticated Sensitive Information Exposure
ZTE ZXV10 W300 router with firmware W300V1.0.0a_ZRD_LK stores sensitive information under the web root with insufficient access control, which allows remote attackers to read backup files via a direct request for rom-0.
CVSS 7.5
CVE-2014-4018 EXPLOITDB text WRITEUP
ZTE ZXV10 W300 Firmware W300V1.0.0a_ZRD_LK - Default Password for Admin Account
The ZTE ZXV10 W300 router with firmware W300V1.0.0a_ZRD_LK has a default password of admin for the admin account, which makes it easier for remote attackers to obtain access via unspecified vectors.
CVE-2015-1171 EXPLOITDB text WORKING POC
GSM SIM Utility <6.6 - Buffer Overflow
Stack-based buffer overflow in GSM SIM Utility (aka SIM Card Editor) 6.6 allows remote attackers to execute arbitrary code via a long entry in a .sms file.
CVE-2018-14327 EXPLOITDB HIGH text WORKING POC
Alcatel OSPREY3_MINI - Privilege Escalation
The installer for the Alcatel OSPREY3_MINI Modem component on EE EE40VB 4G mobile broadband modems with firmware before EE40_00_02.00_45 sets weak permissions (Everyone:Full Control) for the "Web Connecton\EE40" and "Web Connecton\EE40\BackgroundService" directories, which allows local users to gain privileges, as demonstrated by inserting a Trojan horse ServiceManager.exe file into the "Web Connecton\EE40\BackgroundService" directory.
CVSS 7.8
CVE-2014-5116 EXPLOITDB python WORKING POC
cairo 1.10.2 - Denial of Service via Large String in cairo_image_surface_get_data
The cairo_image_surface_get_data function in Cairo 1.10.2, as used in GTK+ and Wireshark, allows context-dependent attackers to cause a denial of service (NULL pointer dereference) via a large string.
EIP-2026-115988 EXPLOITDB php WORKING POC
Ofilter Player 1.1 - '.wav' Integer Division by Zero
EIP-2026-115437 EXPLOITDB python WORKING POC
InfraRecorder - '.m3u' File Buffer Overflow (PoC)
CVE-2015-1362 EXPLOITDB ruby WORKING POC
Exif Pilot 4.7.2 - Buffer Overflow via Long Maker Element in XML File
Buffer overflow in the Customize 35mm tab in Two Pilots Exif Pilot 4.7.2 allows remote attackers to execute arbitrary code via a long string in the maker element in an XML file.
EIP-2026-115191 EXPLOITDB python WORKING POC
Easy Karaokay Player 3.3.31 - '.wav' Integer Division by Zero
CVE-2014-3544 EXPLOITDB text WORKING POC
Moodle < 2.3.11, 2.4.x < 2.4.11, 2.5.x < 2.5.7, 2.6.x < 2.6.4, 2.7.x < 2.7.1 - Stored XSS via Skype ID
Cross-site scripting (XSS) vulnerability in user/profile.php in Moodle through 2.3.11, 2.4.x before 2.4.11, 2.5.x before 2.5.7, 2.6.x before 2.6.4, and 2.7.x before 2.7.1 allows remote authenticated users to inject arbitrary web script or HTML via the Skype ID profile field.
CVE-2017-8912 EXPLOITDB HIGH text WORKING POC
CMS Made Simple 2.1.6 - Authenticated PHP Code Execution via Edit User Tag
CMS Made Simple (CMSMS) 2.1.6 allows remote authenticated administrators to execute arbitrary PHP code via the code parameter to admin/editusertag.php, related to the CreateTagFunction and CallUserTag functions. NOTE: the vendor reportedly has stated this is "a feature, not a bug.
CVSS 7.2
CVE-2015-4870 EXPLOITDB python WORKING POC
Oracle MySQL Server <5.5.45-5.6.26 - DoS
Unspecified vulnerability in Oracle MySQL Server 5.5.45 and earlier, and 5.6.26 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server : Parser.
CVE-2014-4155 EXPLOITDB text WRITEUP
ZTE ZXV10 W300 Firmware W300V1.0.0a_ZRD_LK - Cross-Site Request Forgery via Admin Password Change
Cross-site request forgery (CSRF) vulnerability in the ZTE ZXV10 W300 router with firmware W300V1.0.0a_ZRD_LK allows remote attackers to hijack the authentication of administrators for requests that change the admin password via a request to Forms/tools_admin_1.
EIP-2026-101629 EXPLOITDB text WORKING POC
D-Link DIR-615 - Multiple Vulnerabilities
EIP-2026-101116 EXPLOITDB python WORKING POC
ZTE / TP-Link RomPager - Denial of Service