Tony Boyles

2 exploits Active since Apr 2018
CVE-2018-8974 WRITEUP HIGH WRITEUP
MicrobeTRACE 0.1.11 - Remote Code Execution via Crafted CSV File
Centers for Disease Control and Prevention MicrobeTRACE 0.1.11 allows remote attackers to execute arbitrary code, related to code injection via a crafted CSV file with an initial 'Source<script type="text/javascript" src=' line. Fix released on 2018-03-28.
CVSS 7.8
CVE-2018-9113 WRITEUP HIGH WRITEUP
Centers for Disease Control and Prevention MicrobeTRACE 0.1.12 - Remote Code Execution via Crafted CSV File
Centers for Disease Control and Prevention MicrobeTRACE 0.1.12 allows remote attackers to execute arbitrary code, related to code injection via a crafted CSV file with an initial '><script type="text/javascript" src=' line. Fix released on 2018-03-29.
CVSS 7.8