RonF98

5 exploits Active since Feb 2023
CVE-2024-43451 NOMISEC MEDIUM WRITEUP
NTLM Hash Disclosure Spoofing - Info Disclosure
NTLM Hash Disclosure Spoofing Vulnerability
15 stars
CVSS 6.5
CVE-2023-21716 NOMISEC CRITICAL WORKING POC
Microsoft Word - Remote Code Execution via Integer Overflow
Microsoft Word Remote Code Execution Vulnerability
5 stars
CVSS 9.8
CVE-2023-38831 NOMISEC HIGH WORKING POC
WinRAR CVE-2023-38831 Exploit
RARLAB WinRAR before 6.23 allows attackers to execute arbitrary code when a user attempts to view a benign file within a ZIP archive. The issue occurs because a ZIP archive may include a benign file (such as an ordinary .JPG file) and also a folder that has the same name as the benign file, and the contents of the folder (which may include executable content) are processed during an attempt to access only the benign file. This was exploited in the wild in April through October 2023.
2 stars
CVSS 7.8
CVE-2023-6000 NOMISEC MEDIUM WORKING POC
Popup Builder < 4.2.3 - Unauthenticated Stored Cross-Site Scripting via Popup Update
The Popup Builder WordPress plugin before 4.2.3 does not prevent simple visitors from updating existing popups, and injecting raw JavaScript in them, which could lead to Stored XSS attacks.
1 stars
CVSS 6.1
CVE-2024-11972 NOMISEC CRITICAL WORKING POC
Hunk Companion WP <1.9.0 - Auth Bypass
The Hunk Companion WordPress plugin before 1.9.0 does not correctly authorize some REST API endpoints, allowing unauthenticated requests to install and activate arbitrary Hunk Companion WordPress plugin before 1.9.0 from the WordPress.org repo, including vulnerable Hunk Companion WordPress plugin before 1.9.0 that have been closed.
1 stars
CVSS 9.8