Author: sinn3r

Country:

Twitter: https://twitter.com/_sinn3r

Reported research: 77

Advisories

Risk	Topic & Details
High	Log4Shell HTTP Header Injection (CVE assigned) Remote \| 2022-01-12
High	Bludit Directory Traversal Image File Upload Remote \| 2019-11-13
Med.	Total.js CMS 12 Widget JavaScript Code Injection (Metasploit) Remote \| 2019-10-23
Med.	Total.js CMS 12 Widget JavaScript Code Injection Remote \| 2019-10-22
High	Generic Zip Slip Traversal Remote \| 2019-09-12
High	Cisco Prime Infrastructure Runrshell Privilege Escalation Remote \| 2019-06-20
High	Oracle Application Testing Suite WebLogic Server Administration Console War Deployment (Metasploit) Local \| 2019-05-30
High	Ruby On Rails DoubleTap Development Mode secret_key_base Remote Code Execution (CVE assigned) Remote \| 2019-05-02
High	Axis Network Camera Remote Command Execution Remote \| 2018-07-27
High	Nitro Pro PDF Reader 11.0.3.173 Remote Code Execution (CVE assigned) Remote \| 2017-08-02
High	Microsoft Office Word Malicious Hta Execution (CVE assigned) Remote \| 2017-04-25
High	Github Enterprise Default Session Secret And Deserialization Remote \| 2017-03-28
High	Apache OpenOffice Text Document Malicious Macro Execution Local \| 2017-02-10
High	Microsoft Office Word Malicious Macro Execution Local \| 2017-02-09
Med.	Cisco Firepower Management Console 6.0 Post Authentication UserAdd (CVE assigned) Remote \| 2017-01-12
High	ManageEngine Desktop Central 9 FileUploadServlet ConnectionId (CVE assigned) Remote \| 2015-12-15
Med.	Atlassian HipChat for Jira Plugin Velocity Template Injection (CVE assigned) Remote \| 2015-12-05
High	Oracle BeeHive 2 Arbitrary File Upload Remote \| 2015-12-03
High	Oracle BeeHive 2 Code Execution (CVE assigned) Remote \| 2015-12-03
High	Microsoft Windows Media Center MCL Code Execution (CVE assigned) Local \| 2015-09-15
High	Adobe Flash Player ByteArray Use After Free (CVE assigned) Remote \| 2015-07-08
High	Adobe Flash Player PCRE Regex Logic Error (CVE assigned) Remote \| 2015-03-18
High	Symantec Web Gateway 5 restore.php Command Injection (CVE assigned) Remote \| 2015-03-03
High	Microsoft Windows NtApphelpCacheControl Improper Authorization Check (CVE assigned) Local \| 2015-01-18
High	Microsoft Internet Explorer TextRange Use-After-Free (MS14-012) Exploit (CVE assigned) Remote \| 2014-03-21
High	Microsoft Tagged Image File Format (TIFF) Integer Overflow (CVE assigned) Local \| 2013-11-28
High	Microsoft Internet Explorer CDisplayPointer Use-After-Free Exploit (CVE assigned) Remote \| 2013-10-15
High	Microsoft Internet Explorer SetMouseCapture Use-After-Free (CVE assigned) Remote \| 2013-10-02
High	Microsoft Internet Explorer CCaret Use-After-Free (CVE assigned) Remote \| 2013-09-21
High	Microsoft Internet Explorer CAnchorElement Use-After-Free (MS13-055) Remote \| 2013-09-10

Author: sinn3r

Reported research: 77

Advisories

High

Log4Shell HTTP Header Injection (CVE assigned)

Remote | 2022-01-12

High

Remote | 2019-11-13

Med.

Remote | 2019-10-23

Med.

Remote | 2019-10-22

High

Remote | 2019-09-12

High

Remote | 2019-06-20

High

Local | 2019-05-30

High

Ruby On Rails DoubleTap Development Mode secret_key_base Remote Code Execution (CVE assigned)

Remote | 2019-05-02

High

Remote | 2018-07-27

High

Nitro Pro PDF Reader 11.0.3.173 Remote Code Execution (CVE assigned)

Remote | 2017-08-02

High

Microsoft Office Word Malicious Hta Execution (CVE assigned)

Remote | 2017-04-25

High

Remote | 2017-03-28

High

Local | 2017-02-10

High

Local | 2017-02-09

Med.

Cisco Firepower Management Console 6.0 Post Authentication UserAdd (CVE assigned)

Remote | 2017-01-12

High

ManageEngine Desktop Central 9 FileUploadServlet ConnectionId (CVE assigned)

Remote | 2015-12-15

Med.

Atlassian HipChat for Jira Plugin Velocity Template Injection (CVE assigned)

Remote | 2015-12-05

High

Remote | 2015-12-03

High

Oracle BeeHive 2 Code Execution (CVE assigned)

Remote | 2015-12-03

High

Microsoft Windows Media Center MCL Code Execution (CVE assigned)

Local | 2015-09-15

High

Adobe Flash Player ByteArray Use After Free (CVE assigned)

Remote | 2015-07-08

High

Adobe Flash Player PCRE Regex Logic Error (CVE assigned)

Remote | 2015-03-18

High

Symantec Web Gateway 5 restore.php Command Injection (CVE assigned)

Remote | 2015-03-03

High

Microsoft Windows NtApphelpCacheControl Improper Authorization Check (CVE assigned)

Local | 2015-01-18

High

Microsoft Internet Explorer TextRange Use-After-Free (MS14-012) Exploit (CVE assigned)

Remote | 2014-03-21

High

Microsoft Tagged Image File Format (TIFF) Integer Overflow (CVE assigned)

Local | 2013-11-28

High

Microsoft Internet Explorer CDisplayPointer Use-After-Free Exploit (CVE assigned)

Remote | 2013-10-15

High

Microsoft Internet Explorer SetMouseCapture Use-After-Free (CVE assigned)

Remote | 2013-10-02

High

Microsoft Internet Explorer CCaret Use-After-Free (CVE assigned)

Remote | 2013-09-21

High