𝐸𝓍πŸ₯π“…π“‰π’Ύπ‘œπ“ƒπ’ΆπΏ's Avatar

𝐸𝓍πŸ₯π“…π“‰π’Ύπ‘œπ“ƒπ’ΆπΏ

@ex3ptional

OSCP+ | OSWE | Rapid7 Contributor | Hall of Fame: Microsoft,Metasploit,ESET,AnyDesk,Outline |CVE Γ—5 | HTB: SME, Guru | Vulnerability Researcher R&D | @rapid7.com

16
Followers 161
Following 5
Posts 15.01.2026
Joined
Posts Following

Latest posts by 𝐸𝓍πŸ₯π“…π“‰π’Ύπ‘œπ“ƒπ’ΆπΏ @ex3ptional

Not found...

20.02.2026 03:32 πŸ‘ 2 πŸ” 2 πŸ’¬ 0 πŸ“Œ 0
CVE-2025-34499 - AnyDesk 9.0.1 Unquoted Service Path Privilege Escalation Vulnerability AnyDesk 7.0.15 and 9.0.1 contains an unquoted service path vulnerability that allows local non-privileged users to potentially execute code with elevated SYSTEM privileges. Attackers can exploit the unquoted service path configuration to inject malicious executables that will be run with high-level system permissions.

CVE-2025-34499 - AnyDesk 9.0.1 Unquoted Service Path Privilege Escalation Vulnerability
CVE ID : CVE-2025-34499

Published : Dec. 11, 2025, 10:15 p.m. | 52Β minutes ago

Description : AnyDesk 7.0.15 and 9.0.1 contains an unquoted service path vulnerability that allows local...

12.12.2025 00:03 πŸ‘ 1 πŸ” 1 πŸ’¬ 0 πŸ“Œ 0
CVE-2023-54331 - Outline 1.6.0 - Unquoted Service Path Outline 1.6.0 contains an unquoted service path vulnerability that allows local attackers to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted service path in the OutlineService executable to inject malicious code that will be executed with LocalSystem permissions.

CVE-2023-54331 - Outline 1.6.0 - Unquoted Service Path
CVE ID : CVE-2023-54331

Published : Jan. 13, 2026, 11:16 p.m. | 2Β hours, 14Β minutes ago

Description : Outline 1.6.0 contains an unquoted service path vulnerability that allows local attackers to potentially execute a...

14.01.2026 02:06 πŸ‘ 1 πŸ” 1 πŸ’¬ 0 πŸ“Œ 0
Preview
CVE-2020-37123: Pinger 1.0 Remote Code Execution Flaw CVE-2020-37123 is a remote code execution vulnerability in Pinger 1.0. Learn about its impact, affected versions, and mitigation methods.

CVE-2020-37123 is a remote code execution vulnerability in Pinger 1.0 that enables attackers to inject shell commands through unsanitized parameters. This article covers technical details, affected versions, and mitigation.
www.sentinelone.com/vulnerabilit...

20.02.2026 02:58 πŸ‘ 0 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
Preview
EUVD European Vulnerability Database

EUVD-2025-202935
---
AnyDesk 7.0.15 and 9.0.1 contains an unquoted service path vulnerability that allows local non-privileged users to potentially execute code with elevated SYSTEM privileges.
---
euvd.enisa.europa.eu/enisa/EUVD-2...

15.01.2026 21:02 πŸ‘ 0 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
Preview
Rapid7 Rapid7's VulnDB is curated repository of vetted computer software exploits and exploitable vulnerabilities.

WonderCMS Remote Code Execution
-------------------
Description
This module exploits CVE-2023-41425, an authenticated file upload vulnerability affecting WonderCMS between 3.2.0 and 3.4.2.
--------------------
msutovsky-r7
Ex3ptionaL
www.rapid7.com/db/modules/e...

15.01.2026 19:56 πŸ‘ 0 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
Preview
Vulnerability-Lookup Vulnerability-Lookup - Fast vulnerability lookup correlation from different sources.

Title
WPForms 1.7.8 - Cross-Site Scripting (XSS)
Summary
WPForms 1.7.8 contains a cross-site scripting vulnerability in the slider import search feature and tab parameter.
vulnerability.circl.lu/vuln/cve-202...

15.01.2026 19:53 πŸ‘ 0 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0