Ryan Putman

2 exploits Active since Dec 2024
CVE-2024-53375 NOMISEC HIGH WORKING POC
TP-Link Archer Router Series - Authenticated Remote Code Execution via HomeShield tmp_get_sites Function
An Authenticated Remote Code Execution (RCE) vulnerability affects the TP-Link Archer router series. A vulnerability exists in the "tmp_get_sites" function of the HomeShield functionality provided by TP-Link. This vulnerability is still exploitable without the activation of the HomeShield functionality.
16 stars
CVSS 8.0
CVE-2024-53376 NOMISEC HIGH WORKING POC
CyberPanel < 2.3.8 - Authenticated OS Command Injection via phpSelection Parameter
CyberPanel before 2.3.8 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the phpSelection field to the websites/submitWebsiteCreation URI.
5 stars
CVSS 8.8