jcarabantes

3 exploits Active since Jan 2022
CVE-2022-28590 NOMISEC HIGH WORKING POC
Pixelimity 1.0 - RCE
A Remote Code Execution (RCE) vulnerability exists in Pixelimity 1.0 via admin/admin-ajax.php?action=install_theme.
6 stars
CVSS 7.2
CVE-2024-54820 NOMISEC CRITICAL WORKING POC
XOne Web Monitor <1.0.4.9 - SQL Injection
XOne Web Monitor v02.10.2024.530 framework 1.0.4.9 was discovered to contain a SQL injection vulnerability in the login page. This vulnerability allows attackers to extract all usernames and passwords via a crafted input.
2 stars
CVSS 9.8
CVE-2022-23046 NOMISEC HIGH WORKING POC
Phpipam - SQL Injection
PhpIPAM v1.4.4 allows an authenticated admin user to inject SQL sentences in the "subnet" parameter while searching a subnet via app/admin/routing/edit-bgp-mapping-search.php
1 stars
CVSS 7.2