Timothy Hoekstra

1 exploit Active since Apr 2024
CVE-2024-27448 WRITEUP CRITICAL WORKING POC
maildev 2.0.0-beta1-2.1.0 - Remote Code Execution via Crafted Content-ID Header
MailDev 2 through 2.1.0 allows Remote Code Execution via a crafted Content-ID header for an e-mail attachment, leading to lib/mailserver.js writing arbitrary code into the routes.js file.
CVSS 9.1