krastanoel

4 exploits Active since Apr 2022

CVE-2022-29806 NOMISEC CRITICAL WORKING POC

Zoneminder < 1.36.13 - Path Traversal

ZoneMinder before 1.36.13 allows remote code execution via an invalid language. Ability to create a debug log file at an arbitrary pathname contributes to exploitability.

3 stars

CVSS 9.8

View Code

CVE-2022-30781 METASPLOIT HIGH ruby WORKING POC

Gitea <1.16.7 - Info Disclosure

Gitea before 1.16.7 does not escape git fetch remote.

CVSS 7.5

View Code

CVE-2022-29806 METASPLOIT CRITICAL ruby WORKING POC

Zoneminder < 1.36.13 - Path Traversal

ZoneMinder before 1.36.13 allows remote code execution via an invalid language. Ability to create a debug log file at an arbitrary pathname contributes to exploitability.

CVSS 9.8

View Code

CVE-2022-30781 EXPLOITDB HIGH ruby WORKING POC

Gitea <1.16.7 - Info Disclosure

Gitea before 1.16.7 does not escape git fetch remote.

CVSS 7.5

View Code