Th3GundY

9 exploits Active since Dec 2019
CVE-2019-7192 NOMISEC CRITICAL WORKING POC
QNAP Photo Station - Info Disclosure
This improper access control vulnerability allows remote attackers to gain unauthorized access to the system. To fix these vulnerabilities, QNAP recommend updating Photo Station to their latest versions.
86 stars
CVSS 9.8
CVE-2016-20090 EXPLOITDB HIGH text WRITEUP
Comodo Dragon Browser 52.15.25.663 Privilege Escalation via Unquoted Service Path
Comodo Dragon Browser versions up to 52.15.25.663 contain a privilege escalation vulnerability in the DragonUpdater service due to an unquoted service path running with SYSTEM privileges. A local attacker can insert a malicious executable in the service path and execute arbitrary code with elevated privileges upon service restart or system reboot.
CVSS 7.8
CVE-2016-20088 EXPLOITDB HIGH text WRITEUP
Comodo Chromodo Browser 52.15.25.664 Unquoted Service Path Privilege Escalation
Comodo Chromodo Browser 52.15.25.664 contains an unquoted service path vulnerability in the ChromodoUpdater service that runs with SYSTEM privileges. A local attacker can insert a malicious executable in the service path and execute arbitrary code with elevated privileges upon service restart or system reboot.
CVSS 7.8
EIP-2026-118599 EXPLOITDB python WORKING POC
FTPShell Client 5.24 - 'PWD' Remote Buffer Overflow
EIP-2026-116911 EXPLOITDB text WRITEUP
BlueStacks 2.5.55 - Unquoted Service Path Privilege Escalation
EIP-2026-111621 EXPLOITDB python WORKING POC
QNAP QTS and Photo Station 6.0.3 - Remote Command Execution
EIP-2026-110721 EXPLOITDB text WRITEUP
PHP Marketplace Script - SQL Injection
EIP-2026-108000 EXPLOITDB text WORKING POC
Itech Job Portal Script 9.13 - Multiple Vulnerabilities
EIP-2026-108006 EXPLOITDB text WRITEUP
Itech Multi Vendor Script 6.49 - SQL Injection