CVE-2026-47202

Kavita (cross‑platform reading server) before version 0.9.0.2 is affected by an improper token validation flaw that allows a remote, unauthenticated attacker to obtain a JWT for any user, including admins, given knowledge of the username. The issue stems from inadequate validation of tokens and i...

MS Windows Improper Token Validation Local Exploit (working)

Exploit for unknown platform in category local exploits ============================================================ MS Windows Improper Token Validation Local Exploit working ============================================================ / Removed include "stdafx.h" / str0ke / include include defi...

Microsoft Windows - Improper Token Validation Privilege Escalation

/ Removed include "stdafx.h" / str0ke / include include define INFOBUFFERSIZE MAXCOMPUTERNAMELENGTH + 1 define PATHSIZE INFOBUFFERSIZE + MAXPATH + 4 typedef UINT WINAPI PFnMsiInstallProductLPCSTR szPackagePath, LPCSTR szCommandLine; int mainint argc, char argv HANDLE hToken,hThread; HMODULE hMsi ...

Microsoft Windows - Improper Token Validation Privilege Escalation

Microsoft Windows - Improper Token Validation Privilege Escalation / Removed include "stdafx.h" / str0ke / include include define INFOBUFFERSIZE MAXCOMPUTERNAMELENGTH + 1 define PATHSIZE INFOBUFFERSIZE + MAXPATH + 4 typedef UINT WINAPI PFnMsiInstallProductLPCSTR szPackagePath, LPCSTR szCommandLin...