what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 4 of 4

Files from Michele Di Bonaventura

GL.iNet AR300M 3.216 Remote Code Execution

Posted Mar 4, 2024

Authored by Michele Di Bonaventura

GL.iNet AR300M versions 3.216 and below suffer from an OpenVPN client related remote code execution vulnerability.

tags | exploit, remote, code execution

advisories | CVE-2023-46456

SHA-256 | 0bc765cb78e3663fd69f067daec79c26a082e75d184e6d211c3b136d90337022

Download | Favorite | View

GL.iNet AR300M 4.3.7 Remote Code Execution

Posted Mar 4, 2024

Authored by Michele Di Bonaventura

GL.iNet AR300M versions 4.3.7 and below suffer from an OpenVPN client related remote code execution vulnerability.

tags | exploit, remote, code execution

advisories | CVE-2023-46454

SHA-256 | 9270490cd001ef107453c4f557a02b7ca323b54f6f7cbe828cf79a16dc19810e

Download | Favorite | View

GL.iNet AR300M 4.3.7 Arbitrary File Write

Posted Mar 4, 2024

Authored by Michele Di Bonaventura

GL.iNet AR300M versions 4.3.7 and below suffer from an arbitrary file writing vulnerability.

tags | exploit, arbitrary

advisories | CVE-2023-46455

SHA-256 | e817323e271309d595fea12a346185c0f2533237f054e543a5166f1f7881c859

Download | Favorite | View

Yellowfin Cross Site Scripting / Insecure Direct Object Reference

Posted Oct 14, 2021

Authored by Michele Di Bonaventura

Yellowfin versions prior to 9.6.1 suffer from persistent cross site scripting and insecure direct object reference vulnerabilities.

tags | exploit, vulnerability, xss

advisories | CVE-2021-36387, CVE-2021-36388, CVE-2021-36389

SHA-256 | a75e1219ec6542b9cd32d3ece01efb8d1aeb909324898cf57695ad502378204a

Download | Favorite | View