surajhacx

3 exploits Active since Jun 2024
CVE-2025-55182 NOMISEC CRITICAL WORKING POC
React Server Components <19.2.0 - RCE
A pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1.1, and 19.2.0 including the following packages: react-server-dom-parcel, react-server-dom-turbopack, and react-server-dom-webpack. The vulnerable code unsafely deserializes payloads from HTTP requests to Server Function endpoints.
22 stars
CVSS 10.0
CVE-2024-48605 NOMISEC HIGH WORKING POC
Helakuru - Uncontrolled Search Path
An issue in Helakuru Desktop Application v1.1 allows a local attacker to execute arbitrary code via the lack of proper validation of the wow64log.dll file.
4 stars
CVSS 7.8
CVE-2024-34452 NOMISEC MEDIUM WRITEUP
CMSimple_XH 1.7.6 - XSS
CMSimple_XH 1.7.6 allows XSS by uploading a crafted SVG document.
1 stars
CVSS 6.1