q3rv0

6 exploits Active since Sep 2018
CVE-2019-9194 NOMISEC CRITICAL WORKING POC
Std42 Elfinder < 2.1.48 - OS Command Injection
elFinder before 2.1.48 has a command injection vulnerability in the PHP connector.
CVSS 9.8
CVE-2019-9194 VULNCHECK_XDB CRITICAL WORKING POC
Std42 Elfinder < 2.1.48 - OS Command Injection
elFinder before 2.1.48 has a command injection vulnerability in the PHP connector.
CVSS 9.8
CVE-2019-9194 METASPLOIT CRITICAL ruby WORKING POC
Std42 Elfinder < 2.1.48 - OS Command Injection
elFinder before 2.1.48 has a command injection vulnerability in the PHP connector.
CVSS 9.8
CVE-2018-17057 EXPLOITDB CRITICAL python WORKING POC
TCPDF <6.2.22 - Deserialization
An issue was discovered in TCPDF before 6.2.22. Attackers can trigger deserialization of arbitrary data via the phar:// wrapper.
CVSS 9.8
CVE-2019-9194 EXPLOITDB CRITICAL python WORKING POC
Std42 Elfinder < 2.1.48 - OS Command Injection
elFinder before 2.1.48 has a command injection vulnerability in the PHP connector.
CVSS 9.8
CVE-2019-9194 EXPLOITDB CRITICAL ruby WORKING POC
Std42 Elfinder < 2.1.48 - OS Command Injection
elFinder before 2.1.48 has a command injection vulnerability in the PHP connector.
CVSS 9.8