Yunus YILDIRIM - Security Researcher - Exploit Intelligence Platform

CVE-2019-7192 NOMISEC CRITICAL WORKING POC

QNAP Photo Station - Info Disclosure

This improper access control vulnerability allows remote attackers to gain unauthorized access to the system. To fix these vulnerabilities, QNAP recommend updating Photo Station to their latest versions.

86 stars

CVSS 9.8

View Code

CVE-2016-20090 EXPLOITDB HIGH text WRITEUP

Comodo Dragon Browser 52.15.25.663 Privilege Escalation via Unquoted Service Path

Comodo Dragon Browser versions up to 52.15.25.663 contain a privilege escalation vulnerability in the DragonUpdater service due to an unquoted service path running with SYSTEM privileges. A local attacker can insert a malicious executable in the service path and execute arbitrary code with elevated privileges upon service restart or system reboot.

CVSS 7.8

View Code

CVE-2016-20088 EXPLOITDB HIGH text WRITEUP

Comodo Chromodo Browser 52.15.25.664 Unquoted Service Path Privilege Escalation

Comodo Chromodo Browser 52.15.25.664 contains an unquoted service path vulnerability in the ChromodoUpdater service that runs with SYSTEM privileges. A local attacker can insert a malicious executable in the service path and execute arbitrary code with elevated privileges upon service restart or system reboot.

CVSS 7.8

View Code

EIP-2026-116911 EXPLOITDB text WRITEUP

BlueStacks 2.5.55 - Unquoted Service Path Privilege Escalation

View Code