whitej3rry

3 exploits Active since Feb 2025
CVE-2022-40490 NOMISEC MEDIUM WRITEUP
Prasathmani Tiny File Manager < 2.4.7 - XSS
Tiny File Manager v2.4.7 and below was discovered to contain a Cross Site Scripting (XSS) vulnerability. This vulnerability allows attackers to execute arbitrary code via a crafted payload injected into the name of an uploaded or already existing file.
1 stars
CVSS 4.8
CVE-2025-65731 NOMISEC MEDIUM WRITEUP
D-Link Router DIR-605L - Command Injection
An issue was discovered in D-Link Router DIR-605L (Hardware version F1; Firmware version: V6.02CN02) allowing an attacker with physical access to the UART pins to execute arbitrary commands due to presence of root terminal access on a serial interface without proper access control.
CVSS 6.8
CVE-2022-40916 NOMISEC CRITICAL WRITEUP
Tiny File Manager <2.4.7 - Session Fixation
Tiny File Manager v2.4.7 and below is vulnerable to session fixation.
CVSS 9.8