Synacktiv

30 exploits Active since Feb 2018
CVE-2025-55320 NOMISEC MEDIUM WORKING POC
Microsoft Configuration Manager - SQL Injection
Improper neutralization of special elements used in an sql command ('sql injection') in Microsoft Configuration Manager allows an authorized attacker to elevate privileges over an adjacent network.
CVSS 6.8
CVE-2017-12542 EXPLOITDB CRITICAL python WORKING POC
HP Integrated Lights-out 4 Firmware < 2.53 - Authentication Bypass
A authentication bypass and execution of code vulnerability in HPE Integrated Lights-out 4 (iLO 4) version prior to 2.53 was found.
CVSS 10.0
CVE-2018-4193 EXPLOITDB HIGH WORKING POC
Apple Mac OS X < 10.13.5 - Memory Corruption
An issue was discovered in certain Apple products. macOS before 10.13.5 is affected. The issue involves the "Windows Server" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
CVSS 7.8
EIP-2026-102023 EXPLOITDB javascript WORKING POC
Sony Playstation 4 (PS4) < 6.72 - 'ValidationMessage::buildBubbleTree()' Use-After-Free WebKit Code Execution (PoC)
EIP-2026-101444 EXPLOITDB c WORKING POC
Sercomm TCP/32674 - Backdoor Reactivation