q3rv0 - Security Researcher - Exploit Intelligence Platform

CVE-2019-9194 NOMISEC CRITICAL WORKING POC

elFinder < 2.1.48 - OS Command Injection in PHP Connector

elFinder before 2.1.48 has a command injection vulnerability in the PHP connector.

CVSS 9.8

View Code

CVE-2019-9194 VULNCHECK_XDB CRITICAL WORKING POC

elFinder < 2.1.48 - OS Command Injection in PHP Connector

elFinder before 2.1.48 has a command injection vulnerability in the PHP connector.

CVSS 9.8

View Code

CVE-2019-9194 METASPLOIT CRITICAL ruby WORKING POC

elFinder < 2.1.48 - OS Command Injection in PHP Connector

elFinder before 2.1.48 has a command injection vulnerability in the PHP connector.

CVSS 9.8

View Code

CVE-2018-17057 EXPLOITDB CRITICAL python WORKING POC

TCPDF < 6.2.22 - Remote Code Execution via PHAR Deserialization

An issue was discovered in TCPDF before 6.2.22. Attackers can trigger deserialization of arbitrary data via the phar:// wrapper.

CVSS 9.8

View Code

CVE-2019-9194 EXPLOITDB CRITICAL python WORKING POC

elFinder < 2.1.48 - OS Command Injection in PHP Connector

elFinder before 2.1.48 has a command injection vulnerability in the PHP connector.

CVSS 9.8

View Code

CVE-2019-9194 EXPLOITDB CRITICAL ruby WORKING POC

elFinder < 2.1.48 - OS Command Injection in PHP Connector

elFinder before 2.1.48 has a command injection vulnerability in the PHP connector.

CVSS 9.8

View Code