javicarabantes

3 exploits Active since Jan 2022
CVE-2022-28590 NOMISEC HIGH WORKING POC
Pixelimity 1.0 - RCE
A Remote Code Execution (RCE) vulnerability exists in Pixelimity 1.0 via admin/admin-ajax.php?action=install_theme.
6 stars
CVSS 7.2
CVE-2022-23046 NOMISEC HIGH WORKING POC
Phpipam - SQL Injection
PhpIPAM v1.4.4 allows an authenticated admin user to inject SQL sentences in the "subnet" parameter while searching a subnet via app/admin/routing/edit-bgp-mapping-search.php
4 stars
CVSS 7.2
CVE-2022-23046 NOMISEC HIGH WORKING POC
Phpipam - SQL Injection
PhpIPAM v1.4.4 allows an authenticated admin user to inject SQL sentences in the "subnet" parameter while searching a subnet via app/admin/routing/edit-bgp-mapping-search.php
1 stars
CVSS 7.2