{"uuid": "57347612-e2ba-4653-ad67-5be2563e319c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2018-7250", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/33", "content": "#exploit\n1. CVE-2017-16666:\nXplico - Unauthenticated RCE\nhttps://pentest.blog/advisory-xplico-unauthenticated-remote-code-execution-cve-2017-16666\n\n2. CVE-2018-7250:\nSecDrvPoolLeak - An uninitialized kernel pool allocation in IOCTL 0xCA002813\nhttps://github.com/Elvin9/SecDrvPoolLeak\n\n3. CVE-2018-11776:\nApache Struts Vulnerability\nhttps://semmle.com/news/apache-struts-CVE-2018-11776\n]-> PoC: https://securitylab.github.com/research/apache-struts-CVE-2018-11776\n\n4. CVE-2018-6194, CVE-2018-6195:\nPHP Object Injection + XSS in WordPress Splashing Images Plugin\nhttps://seclists.org/fulldisclosure/2018/Jan/91", "creation_timestamp": "2024-06-22T09:27:44.000000Z"}