chr1x

12 exploits Active since Nov 2010
CVE-2010-10011 EXPLOITDB MEDIUM text WORKING POC
Acritum Femitter Server 1.04 - Path Traversal
A vulnerability, which was classified as problematic, was found in Acritum Femitter Server 1.04. Affected is an unknown function. The manipulation leads to path traversal. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-250446 is the identifier assigned to this vulnerability.
CVSS 4.3
CVE-2014-125119 METASPLOIT HIGH ruby WORKING POC
WinRAR - Info Disclosure
A filename spoofing vulnerability exists in WinRAR when opening specially crafted ZIP archives. The issue arises due to inconsistencies between the Central Directory and Local File Header entries in ZIP files. When viewed in WinRAR, the file name from the Central Directory is displayed to the user, while the file from the Local File Header is extracted and executed. An attacker can leverage this flaw to spoof filenames and trick users into executing malicious payloads under the guise of harmless files, potentially leading to remote code execution.
CVE-2010-4181 EXPLOITDB text WORKING POC
Yaws - Path Traversal
Directory traversal vulnerability in Yaws 1.89 allows remote attackers to read arbitrary files via ..\ (dot dot backslash) and other sequences.
EIP-2026-119213 EXPLOITDB text WRITEUP
tftp desktop 2.5 - Directory Traversal
EIP-2026-119216 EXPLOITDB text WRITEUP
TFTPDWIN 0.4.2 - Directory Traversal
EIP-2026-119246 EXPLOITDB text WORKING POC
VicFTPS 5.0 - Directory Traversal
EIP-2026-118920 EXPLOITDB text WORKING POC
Mongoose Web Server 2.11 - Directory Traversal
EIP-2026-118639 EXPLOITDB text WORKING POC
Home FTP Server 1.11.1.149 - (Authenticated) Directory Traversal
EIP-2026-118650 EXPLOITDB text WORKING POC
HTTP 1.1 - GET Directory Traversal
EIP-2026-118130 EXPLOITDB ruby WORKING POC
WinRAR - Filename Spoofing (Metasploit)
EIP-2026-103995 EXPLOITDB text WORKING POC
Multi-Threaded HTTP Server 1.1 - Directory Traversal (1)
EIP-2026-103457 EXPLOITDB perl WORKING POC
Embedthis Appweb 3.1.2 - Remote Denial of Service