kn1g78

2 exploits Active since Feb 2025
CVE-2025-1104 WRITEUP HIGH WRITEUP
D-Link DHP-W310AV 1.04 - Authentication Bypass by Spoofing
A vulnerability has been found in D-Link DHP-W310AV 1.04 and classified as critical. This vulnerability affects unknown code. The manipulation leads to authentication bypass by spoofing. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
CVSS 7.3
CVE-2025-7181 WRITEUP MEDIUM WRITEUP
Staff Audit System 1.0 - Unrestricted File Upload via /test.php uploadedfile Parameter
A vulnerability, which was classified as critical, was found in code-projects Staff Audit System 1.0. Affected is an unknown function of the file /test.php. The manipulation of the argument uploadedfile leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
CVSS 6.3