exploit the possibilities

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 2 of 2

Files from Dariusz Gonda

Circontrol Raption Buffer Overflow / Command Injection

Posted Mar 28, 2024

Authored by Dariusz Gonda, Abert Spruyt, Alex Salvetti

The server in Circontrol Raption versions through 5.11.2 has a pre-authentication stack-based buffer overflow that can be exploited to gain run-time control of the device as root. The pwrstudio web application of EV Charger (in the server in Circontrol Raption through 5.6.2) is vulnerable to OS command injection.

tags | exploit, web, overflow, root

advisories | CVE-2020-8006, CVE-2020-8007

SHA-256 | 2a13323836730c890a63f333a24fcfb62637513c16193386327b7be986133bb0

Download | Favorite | View

Novus Management System Directory Traversal / Cross Site Scripting

Posted Jul 10, 2021

Authored by Dariusz Gonda

Novus Management System versions prior to 1.51.2 suffer from cross site scripting and directory traversal vulnerabilities.

tags | advisory, vulnerability, xss, file inclusion

advisories | CVE-2021-34820, CVE-2021-38421

SHA-256 | a65d049ebbdbe6ea6605dde31e263ad17f342eaa1325232c9713027697ce29ea

Download | Favorite | View