Lucene search
+L

6 matches found

metasploit
metasploit
added 2023/08/17 7:51 p.m.279 views

Greenshot .NET Deserialization Fileformat Exploit

There exists a .NET deserialization vulnerability in Greenshot version 1.3.274 and below. The deserialization allows the execution of commands when a user opens a Greenshot file. The commands execute under the same permissions as the Greenshot service. Typically, is the logged in user. Module...

7.8CVSS8AI score0.07685EPSS
Exploits7
packetstorm
packetstorm
added 2023/08/17 12:0 a.m.363 views

Greenshot 1.3.274 Deserialization / Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Greenshot .NET Deserialization Fileformat Exploit', 'Description' = %q There exists a .NET deserialization vulnerability in Greenshot version...

7.8CVSS7.1AI score0.07685EPSS
Exploits7
circl
circl
added 2023/08/01 10:58 p.m.10 views

CVE-2023-34634

creationtimestamp| type| source ---|---|--- 2023-08-01 22:58:33+00:00| seen| https://t.me/cibsecurity/67517 2023-08-17 14:46:50+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/greenshotdeserializecve202334634.rb 2023-08-18 09:13:05+00:00...

7.8CVSS7.1AI score0.07685EPSS
Exploits7References6
cve
cve
added 2023/08/01 12:0 a.m.152 views

CVE-2023-34634

Greenshot 1.2.10 and below is vulnerable to a .NET deserialization issue that allows arbitrary code execution when opening a .greenshot file. The vulnerability arises from insecure deserialization of .NET content inside Greenshot files, with exploitation described as executing commands under the ...

7.8CVSS8AI score0.07685EPSS
Exploits7References5Affected Software1
zdt
zdt
added 2023/07/28 12:0 a.m.251 views

GreenShot 1.2.10 - Insecure Deserialization Arbitrary Code Execution Vulnerability

Exploit Title: GreenShot 1.2.10 - Insecure Deserialization Arbitrary Code Execution Exploit Author: p4r4bellum Vendor Homepage: https://getgreenshot.org Software Link: https://getgreenshot.org/downloads/ Version: 1.2.6.10 Tested on: windows 10.0.19045 N/A build 19045 CVE : CVE-2023-34634 GreenSho...

7.8CVSS7.8AI score0.07685EPSS
Exploits7
exploitdb
exploitdb
added 2023/07/28 12:0 a.m.338 views

GreenShot 1.2.10 - Insecure Deserialization Arbitrary Code Execution

Exploit Title: GreenShot 1.2.10 - Insecure Deserialization Arbitrary Code Execution Date: 26/07/2023 Exploit Author: p4r4bellum Vendor Homepage: https://getgreenshot.org Software Link: https://getgreenshot.org/downloads/ Version: 1.2.6.10 Tested on: windows 10.0.19045 N/A build 19045 CVE :...

7.8CVSS7AI score0.07685EPSS
Exploits7
Rows per page
Query Builder