james

13 exploits Active since Aug 2008
CVE-2019-17352 WRITEUP HIGH WRITEUP
JFinal < 4.4 and com.jfinal < 4.5 - Unrestricted Upload of File with Dangerous Type via isSafeFile Bypass
In JFinal cos before 2019-08-13, as used in JFinal 4.4, there is a vulnerability that can bypass the isSafeFile() function: one can upload any type of file. For example, a .jsp file may be stored and almost immediately deleted, but this deletion step does not occur for certain exceptions.
CVSS 7.5
CVE-2020-7993 WRITEUP MEDIUM WRITEUP
Prototype 1.6.0.1 - Authenticated Ticket Forgery via Email ID Field
Prototype 1.6.0.1 allows remote authenticated users to forge ticket creation (on behalf of other user accounts) via a modified email ID field.
CVSS 4.3
CVE-2020-35370 EXPLOITDB HIGH text WORKING POC
raysync < 3.3.3.8 - Unauthenticated Remote Code Execution via Path Traversal
A RCE vulnerability exists in Raysync below 3.3.3.8. An unauthenticated unauthorized attacker sending a specifically crafted request to override the specific file in server with malicious content can login as "admin", then to modify specific shell file to achieve remote code execution(RCE) on the hosting server.
CVSS 8.8
EIP-2026-117913 EXPLOITDB ruby WORKING POC
SnackAmp 3.1.2 - SMP Buffer Overflow (SEH)
EIP-2026-117915 EXPLOITDB ruby WORKING POC
SnackAmp 3.1.3B - SMP Buffer Overflow (SEH)
EIP-2026-117914 EXPLOITDB ruby WORKING POC
SnackAmp 3.1.3 - SMP Buffer Overflow (SEH)
CVE-2010-5299 EXPLOITDB ruby WORKING POC
MicroP 0.1.1.1600 - Buffer Overflow
Stack-based buffer overflow in MicroP 0.1.1.1600 allows remote attackers to execute arbitrary code via a crafted .mppl file. NOTE: it has been reported that the overflow is in the lpFileName parameter of the CreateFileA function, but the overflow is probably caused by a separate, unnamed function.
CVE-2009-4962 EXPLOITDB ruby WORKING POC
Fat Player 0.6b - Remote Code Execution via Long String in WAV File
Stack-based buffer overflow in Fat Player 0.6b allows remote attackers to execute arbitrary code via a long string in a .wav file. NOTE: some of these details are obtained from third party information.
EIP-2026-116258 EXPLOITDB ruby WORKING POC
SnackAmp 3.1.2 - '.wav' Buffer Overflow (PoC)
CVE-2005-4891 EXPLOITDB CRITICAL perl WORKING POC
Simple Machine Forum <1.0.4 - SQL Injection
Simple Machine Forum (SMF) versions 1.0.4 and earlier have an SQL injection vulnerability that allows remote attackers to inject arbitrary SQL statements.
CVSS 9.8
EIP-2026-110446 EXPLOITDB perl WORKING POC
PAFaq beta4 - Database Unauthorized Access
CVE-2008-3554 EXPLOITDB php WORKING POC
Discuz! 6.0.1 - SQL Injection via searchid Parameter
SQL injection vulnerability in index.php in Discuz! 6.0.1 allows remote attackers to execute arbitrary SQL commands via the searchid parameter in a search action.
CVE-2019-2729 EXPLOITDB CRITICAL python WORKING POC
Oracle Communications Diameter Signaling Router - Unauthenticated Remote Code Execution via HTTP
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Web Services). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in takeover of Oracle WebLogic Server. CVSS 3.0 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).
CVSS 9.8