hunter gregal

7 exploits Active since Feb 2019
CVE-2023-34641 GITHUB HIGH WRITEUP
KioWare for Windows <8.33 - Info Disclosure
KioWare for Windows through v8.33 was discovered to contain an incomplete blacklist filter for blocked dialog boxes on Windows 10. This issue can allow attackers to open a file dialog box via the function window.print() which can then be used to open an unprivileged command prompt.
3 stars
CVSS 7.8
CVE-2018-20781 WRITEUP HIGH WORKING POC
GNOME Keyring < 3.27.2 - Insufficiently Protected Credentials via Session-Child Process
In pam/gkr-pam-module.c in GNOME Keyring before 3.27.2, the user's password is kept in a session-child process spawned from the LightDM daemon. This can expose the credential in cleartext.
CVSS 7.8
CVE-2023-34642 WRITEUP HIGH WRITEUP
KioWare for Windows <= 8.33 - Unauthenticated OS Command Injection via showDirectoryPicker Function
KioWare for Windows through v8.33 was discovered to contain an incomplete blacklist filter for blocked dialog boxes on Windows 10. This issue can allow attackers to open a file dialog box via the function showDirectoryPicker() which can then be used to open an unprivileged command prompt.
CVSS 7.8
CVE-2018-20781 WRITEUP HIGH WORKING POC
GNOME Keyring < 3.27.2 - Insufficiently Protected Credentials via Session-Child Process
In pam/gkr-pam-module.c in GNOME Keyring before 3.27.2, the user's password is kept in a session-child process spawned from the LightDM daemon. This can expose the credential in cleartext.
CVSS 7.8
CVE-2023-34641 WRITEUP HIGH WRITEUP
KioWare for Windows <8.33 - Info Disclosure
KioWare for Windows through v8.33 was discovered to contain an incomplete blacklist filter for blocked dialog boxes on Windows 10. This issue can allow attackers to open a file dialog box via the function window.print() which can then be used to open an unprivileged command prompt.
CVSS 7.8
CVE-2023-34642 WRITEUP HIGH WRITEUP
KioWare for Windows <= 8.33 - Unauthenticated OS Command Injection via showDirectoryPicker Function
KioWare for Windows through v8.33 was discovered to contain an incomplete blacklist filter for blocked dialog boxes on Windows 10. This issue can allow attackers to open a file dialog box via the function showDirectoryPicker() which can then be used to open an unprivileged command prompt.
CVSS 7.8
EIP-2026-110633 EXPLOITDB php WORKING POC
PHP 7.4 FFI - 'disable_functions' Bypass