Tyler Butler

7 exploits Active since Jun 2021
CVE-2021-3441 NOMISEC MEDIUM SCANNER
HP Officejet 7110 Firmware - XSS
A potential security vulnerability has been identified for the HP OfficeJet 7110 Wide Format ePrinter that enables Cross-Site Scripting (XSS).
2 stars
CVSS 4.8
CVE-2021-35956 NOMISEC MEDIUM WORKING POC
AKCP sensorProbe <SP480-20210624 - XSS
Stored cross-site scripting (XSS) in the embedded webserver of AKCP sensorProbe before SP480-20210624 enables remote authenticated attackers to introduce arbitrary JavaScript via the Sensor Description, Email (from/to/cc), System Name, and System Location fields.
1 stars
CVSS 5.4
CVE-2020-37005 EXPLOITDB HIGH python WORKING POC
TimeClock Software 1.01 - Authenticated SQL Injection
TimeClock Software 1.01 contains an authenticated time-based SQL injection vulnerability that allows attackers to enumerate valid usernames by manipulating the 'notes' parameter. Attackers can inject conditional time delays in the add_entry.php endpoint to determine user existence by measuring response time differences.
CVSS 7.1
EIP-2026-110772 EXPLOITDB text WORKING POC
PHP Timeclock 1.04 - Time and Boolean Based Blind SQL Injection
EIP-2026-110771 EXPLOITDB text WORKING POC
PHP Timeclock 1.04 - 'Multiple' Cross Site Scripting (XSS)
CVE-2021-35956 EXPLOITDB MEDIUM text WORKING POC
AKCP sensorProbe <SP480-20210624 - XSS
Stored cross-site scripting (XSS) in the embedded webserver of AKCP sensorProbe before SP480-20210624 enables remote authenticated attackers to introduce arbitrary JavaScript via the Sensor Description, Email (from/to/cc), System Name, and System Location fields.
CVSS 5.4
CVE-2021-3441 EXPLOITDB MEDIUM python WORKING POC
HP Officejet 7110 Firmware - XSS
A potential security vulnerability has been identified for the HP OfficeJet 7110 Wide Format ePrinter that enables Cross-Site Scripting (XSS).
CVSS 4.8