hunter gregal

5 exploits Active since Feb 2019
CVE-2023-34641 GITHUB HIGH WRITEUP
KioWare for Windows <8.33 - Info Disclosure
KioWare for Windows through v8.33 was discovered to contain an incomplete blacklist filter for blocked dialog boxes on Windows 10. This issue can allow attackers to open a file dialog box via the function window.print() which can then be used to open an unprivileged command prompt.
3 stars
CVSS 7.8
CVE-2018-20781 WRITEUP HIGH WORKING POC
Gnome Keyring < 3.27.2 - Insufficiently Protected Credentials
In pam/gkr-pam-module.c in GNOME Keyring before 3.27.2, the user's password is kept in a session-child process spawned from the LightDM daemon. This can expose the credential in cleartext.
CVSS 7.8
CVE-2023-34641 WRITEUP HIGH WRITEUP
KioWare for Windows <8.33 - Info Disclosure
KioWare for Windows through v8.33 was discovered to contain an incomplete blacklist filter for blocked dialog boxes on Windows 10. This issue can allow attackers to open a file dialog box via the function window.print() which can then be used to open an unprivileged command prompt.
CVSS 7.8
CVE-2023-34642 WRITEUP HIGH WRITEUP
Kioware < 8.33 - OS Command Injection
KioWare for Windows through v8.33 was discovered to contain an incomplete blacklist filter for blocked dialog boxes on Windows 10. This issue can allow attackers to open a file dialog box via the function showDirectoryPicker() which can then be used to open an unprivileged command prompt.
CVSS 7.8
EIP-2026-110633 EXPLOITDB php WORKING POC
PHP 7.4 FFI - 'disable_functions' Bypass