Tomas Melicher - Security Researcher - Exploit Intelligence Platform

CVE-2022-30075 NOMISEC HIGH WORKING POC

TP-Link Archer AX50 Firmware < 210730 - Remote Code Execution via Malicious Backup File Import

In TP-Link Router AX50 firmware 210730 and older, import of a malicious backup file via web interface can lead to remote code execution due to improper validation.

231 stars

CVSS 8.8

View Code

CVE-2020-3956 NOMISEC HIGH WORKING POC

VMware Cloud Director 9.5.0.0-9.5.0.5 - Authenticated Remote Code Execution via Expression Language Injection

VMware Cloud Director 10.0.x before 10.0.0.2, 9.7.0.x before 9.7.0.5, 9.5.0.x before 9.5.0.6, and 9.1.0.x before 9.1.0.4 do not properly handle input leading to a code injection vulnerability. An authenticated actor may be able to send malicious traffic to VMware Cloud Director which may lead to arbitrary remote code execution. This vulnerability can be exploited through the HTML5- and Flex-based UIs, the API Explorer interface and API access.

89 stars

CVSS 8.8

View Code

CVE-2022-30075 NOMISEC HIGH WORKING POC

TP-Link Archer AX50 Firmware < 210730 - Remote Code Execution via Malicious Backup File Import

In TP-Link Router AX50 firmware 210730 and older, import of a malicious backup file via web interface can lead to remote code execution due to improper validation.

3 stars

CVSS 8.8

View Code

CVE-2022-30075 NOMISEC HIGH WORKING POC

TP-Link Archer AX50 Firmware < 210730 - Remote Code Execution via Malicious Backup File Import

In TP-Link Router AX50 firmware 210730 and older, import of a malicious backup file via web interface can lead to remote code execution due to improper validation.

1 stars

CVSS 8.8

View Code

CVE-2020-3956 EXPLOITDB HIGH python WORKING POC

VMware Cloud Director 9.5.0.0-9.5.0.5 - Authenticated Remote Code Execution via Expression Language Injection

VMware Cloud Director 10.0.x before 10.0.0.2, 9.7.0.x before 9.7.0.5, 9.5.0.x before 9.5.0.6, and 9.1.0.x before 9.1.0.4 do not properly handle input leading to a code injection vulnerability. An authenticated actor may be able to send malicious traffic to VMware Cloud Director which may lead to arbitrary remote code execution. This vulnerability can be exploited through the HTML5- and Flex-based UIs, the API Explorer interface and API access.

CVSS 8.8

View Code

EIP-2026-102431 EXPLOITDB python WORKING POC

VMWAre vCloud Director 9.7.0.15498291 - Remote Code Execution

View Code

CVE-2022-30075 EXPLOITDB HIGH python WORKING POC

TP-Link Archer AX50 Firmware < 210730 - Remote Code Execution via Malicious Backup File Import

In TP-Link Router AX50 firmware 210730 and older, import of a malicious backup file via web interface can lead to remote code execution due to improper validation.

CVSS 8.8

View Code