SamAlucard

16 exploits Active since Dec 2025
CVE-2024-58288 EXPLOITDB HIGH text WRITEUP
Genexus Protection Server 9.7.2.10 - Code Injection
Genexus Protection Server 9.7.2.10 contains an unquoted service path vulnerability in the protsrvservice Windows service configuration. Attackers can exploit the unquoted binary path to execute arbitrary code with elevated LocalSystem privileges by placing malicious executables in specific file system locations.
CVE-2022-50929 EXPLOITDB HIGH text WRITEUP
Connectify Hotspot 2018 - Code Injection
Connectify Hotspot 2018 contains an unquoted service path vulnerability in its ConnectifyService executable that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted path in 'C:\Program Files (x86)\Connectify\ConnectifyService.exe' to inject malicious executables and escalate privileges.
CVSS 8.4
CVE-2022-50928 EXPLOITDB HIGH text WRITEUP
BlueSoleilCS 5.4.277 - Code Injection
BlueSoleilCS 5.4.277 contains an unquoted service path vulnerability in its Windows service configuration that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted binary path in 'C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe' to inject malicious executables and escalate privileges.
CVSS 7.8
CVE-2020-36937 EXPLOITDB HIGH text WRITEUP
Microvirt MEMU Play 3.7.0 - Code Injection
Microvirt MEMU Play 3.7.0 contains an unquoted service path vulnerability in the MEmusvc Windows service that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted binary path to inject malicious executables that will be run with elevated LocalSystem privileges.
CVSS 7.8
CVE-2020-36936 EXPLOITDB HIGH text WORKING POC
Magic Mouse 2 Utilities <2.20 - Privilege Escalation
Magic Mouse 2 Utilities 2.20 contains an unquoted service path vulnerability in its Windows service configuration. Attackers can exploit the unquoted path to inject malicious executables and gain elevated system privileges by placing a malicious file in the service path.
CVSS 7.8
CVE-2020-36935 EXPLOITDB HIGH text WRITEUP
KMSpico 17.1.0.0 - Code Injection
KMSpico 17.1.0.0 contains an unquoted service path vulnerability in the Service KMSELDI configuration that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted binary path in C:\Program Files\KMSpico\Service_KMS.exe to inject malicious executables and escalate privileges.
CVSS 7.8
CVE-2020-36933 EXPLOITDB HIGH text WRITEUP
HTC IPTInstaller 4.0.9 - Code Injection
HTC IPTInstaller 4.0.9 contains an unquoted service path vulnerability in the PassThru Service configuration. Attackers can exploit the unquoted binary path to inject and execute malicious code with elevated LocalSystem privileges.
CVSS 7.8
CVE-2021-47859 EXPLOITDB HIGH text WRITEUP
ActivIdentity 8.2 - Local Privilege Escalation
ActivIdentity 8.2 contains an unquoted service path vulnerability in the ac.sharedstore service that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted binary path in C:\Program Files\Common Files\ActivIdentity\ to inject malicious executables and escalate privileges.
CVSS 7.8
CVE-2020-36975 EXPLOITDB HIGH text WRITEUP
EPSON Status Monitor 3 <8.0 - RCE
EPSON Status Monitor 3 version 8.0 contains an unquoted service path vulnerability that allows local attackers to potentially execute arbitrary code by exploiting the service binary path. Attackers can leverage the unquoted path in 'C:\Program Files\Common Files\EPSON\EPW!3SSRP\E_S60RPB.EXE' to inject malicious executables and escalate privileges.
CVSS 7.8
EIP-2026-118136 EXPLOITDB text WRITEUP
Winstep 18.06.0096 - 'Xtreme Service' Unquoted Service Path
EIP-2026-118017 EXPLOITDB text WRITEUP
TOSHIBA DVD PLAYER Navi Support Service - 'TNaviSrv' Unquoted Service Path
EIP-2026-117163 EXPLOITDB text WRITEUP
File Sanitizer for HP ProtectTools 5.0.1.3 - 'HPFSService' Unquoted Service Path
EIP-2026-117043 EXPLOITDB text WRITEUP
DigitalPersona 4.5.0.2213 - 'DpHostW' Unquoted Service Path
EIP-2026-117121 EXPLOITDB text WRITEUP
ELAN Touchpad 15.2.13.1_X64_WHQL - 'ETDService' Unquoted Service Path
EIP-2026-117326 EXPLOITDB text WRITEUP
Intel(R) Management Engine Components 6.0.0.1189 - 'LMS' Unquoted Service Path
EIP-2026-117231 EXPLOITDB text WRITEUP
Genexus Protection Server 9.6.4.2 - 'protsrvservice' Unquoted Service Path