CVE-2025-6218.zip
8.6 KB
CVE-2025-6218
Author: Hatchepsoute
RARLAB WinRAR Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of RARLAB WinRAR. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the handling of file paths within archive files. A crafted file path can cause the process to traverse to unintended directories. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-27198.
GitHub Link:
https://github.com/Hatchepsoute/sigma-rules
Author: Hatchepsoute
RARLAB WinRAR Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of RARLAB WinRAR. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the handling of file paths within archive files. A crafted file path can cause the process to traverse to unintended directories. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-27198.
GitHub Link:
https://github.com/Hatchepsoute/sigma-rules
CVE-2024-48990.zip
3.3 KB
CVE-2024-48990
Author: o-sec
Qualys discovered that needrestart, before version 3.8, allows local attackers to execute arbitrary code as root by tricking needrestart into running the Python interpreter with an attacker-controlled PYTHONPATH environment variable.
GitHub Link:
https://github.com/o-sec/CVE-2024-48990
Author: o-sec
Qualys discovered that needrestart, before version 3.8, allows local attackers to execute arbitrary code as root by tricking needrestart into running the Python interpreter with an attacker-controlled PYTHONPATH environment variable.
GitHub Link:
https://github.com/o-sec/CVE-2024-48990
CVE-2017-0144.zip
152.5 KB
CVE-2017-0144
Author: Mitsu-bis
The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote attackers to execute arbitrary code via crafted packets, aka "Windows SMB Remote Code Execution Vulnerability." This vulnerability is different from those described in CVE-2017-0143, CVE-2017-0145, CVE-2017-0146, and CVE-2017-0148.
GitHub Link:
https://github.com/Mitsu-bis/Eternal-Blue-CVE-2017-0144-THM-Write-Up
Author: Mitsu-bis
The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote attackers to execute arbitrary code via crafted packets, aka "Windows SMB Remote Code Execution Vulnerability." This vulnerability is different from those described in CVE-2017-0143, CVE-2017-0145, CVE-2017-0146, and CVE-2017-0148.
GitHub Link:
https://github.com/Mitsu-bis/Eternal-Blue-CVE-2017-0144-THM-Write-Up
CVE-2022-0492
Author: smallcat9612
A vulnerability was found in the Linux kernel’s cgroupreleaseagentwrite in the kernel/cgroup/cgroup-v1.c function. This flaw, under certain circumstances, allows the use of the cgroups v1 releaseagent feature to escalate privileges and bypass the namespace isolation unexpectedly.
GitHub Link:
https://github.com/smallcat9612/CVE-2022-0492-Docker-Breakout-Checker-and-PoC
Author: smallcat9612
A vulnerability was found in the Linux kernel’s cgroupreleaseagentwrite in the kernel/cgroup/cgroup-v1.c function. This flaw, under certain circumstances, allows the use of the cgroups v1 releaseagent feature to escalate privileges and bypass the namespace isolation unexpectedly.
GitHub Link:
https://github.com/smallcat9612/CVE-2022-0492-Docker-Breakout-Checker-and-PoC
CVE-2017-0785.zip
1.8 KB
CVE-2017-0785
Author: Richard1031
A information disclosure vulnerability in the Android system (bluetooth). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63146698.
GitHub Link:
https://github.com/Richard1031/CVE-2017-0785-PoC
Author: Richard1031
A information disclosure vulnerability in the Android system (bluetooth). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63146698.
GitHub Link:
https://github.com/Richard1031/CVE-2017-0785-PoC
CVE-2025-55184
Author: Tarekhshaikh13
None
GitHub Link:
https://github.com/Tarekhshaikh13/CVE-2025-55184
Author: Tarekhshaikh13
None
GitHub Link:
https://github.com/Tarekhshaikh13/CVE-2025-55184