gandharv

3 exploits Active since Aug 2022
CVE-2022-3019 WRITEUP HIGH WRITEUP
App - Privilege Escalation
The forgot password token basically just makes us capable of taking over the account of whoever comment in an app that we can see (bruteforcing comment id's might also be an option but I wouldn't count on it, since it would take a long time to find a valid one).
CVSS 8.8
CVE-2022-3348 WRITEUP MEDIUM WRITEUP
Tooljet - Information Disclosure
Just like in the previous report, an attacker could steal the account of different users. But in this case, it's a little bit more specific, because it is needed to be an editor in the same app as the victim.
CVSS 4.9
CVE-2022-4111 WRITEUP MEDIUM WRITEUP
Tooljet < 1.27.0 - Denial of Service
Unrestricted file size limit can lead to DoS in tooljet/tooljet <1.27 by allowing a logged in attacker to upload profile pictures over 2MB.
CVSS 6.5