Whoami

JavierOlmedo.json

{
    "Personal_Info":{
        "Name": "Javier",
        "Last Name": "Olmedo",
        "Age": 38,
        "Education": "Pentester",
        "Email": "javierolmedo@hackpuntes.com",
        "Interests":[
            "Cybersecurity, DevOps, Ethical Hacking, Red Teaming",
        ],
        "Current_Tasks": [
            "Working on final degree project",
            "Working on OSCP and OSWE (Offensive Security Certified Professional and Offensive Security Web Expert)"
        ]
    }
}

Skills

Pentesting Sysadmin Devops Programming
Enumeration Linux Ansible Python
Vulnerability assessment Virtualization Docker Shell Scripting
Privilege Escalation Automation Kubernetes Java
Metasploit MySQL   C/C++/C#
Wireless Hacking Nginx    
Burp Suite Apache    

Certifications

OSCP Certification

OSWE Certification

OSWE Certification

Offshore Pro Lab

CTF Profiles

Hack The Box

My CVEs

CVE Name CVSS3 CVSS2 ExploitDB
CVE-2018-13832 All In One Favicon <= 4.6 - Multiple Stored Authenticated XSS 4.8 MEDIUM 🟠 3.5 LOW 🟢
CVE-2018-14430 Multi Step Form <= 1.2.5 - Multiple Unauthenticated Reflected XSS 6.1 MEDIUM 🟠 4.3 MEDIUM 🟠
CVE-2018-15571 Export Users to CSV <= 1.1.1 CSV Injection 8.6 HIGH 🔴 6.8 MEDIUM 🟠
CVE-2018-15873 Sentrifugo HRMS 3.2 - Blind SQL Injection 9.8 CRITICAL 🟣 7.5 HIGH 🔴
CVE-2018-15917 Jorani Leave Management System 0.6.5 - Cross-Site Scripting Persistente 5.4 MEDIUM 🟠 3.5 LOW 🟢
CVE-2018-15918 Jorani Leave Management System 0.6.5 - SQL Injection 5.4 MEDIUM 🟠 5.5 MEDIUM 🟠
CVE-2018-18478 Libre Network Monitoring System 1.43 - Stored Cross-Site Scripting 6.1 MEDIUM 🟠 4.3 MEDIUM 🟠
CVE-2018-18921 PHP Server Monitor 3.3.1 - Cross-Site Request Forgery 6.5 MEDIUM 🟠 5.8 MEDIUM 🟠
CVE-2018-18922 Ticketly 1.0 - Privilege Escalation 9.8 CRITICAL 🟣 5.0 MEDIUM 🟠
CVE-2018-18923 Ticketly 1.0 - Multiple SQL Injection 9.8 CRITICAL 🟣 7.5 HIGH 🔴
CVE-2018-19828 Integria IMS 5.0.83 - Cross-Site Scripting 6.1 MEDIUM 🟠 4.3 MEDIUM 🟠
CVE-2018-19829 Integria IMS 5.0.83 – Cross-Site Request Forgery 6.5 MEDIUM 🟠 5.8 MEDIUM 🟠
CVE-2019-7400 Rukovoditel ERP & CRM 2.4.1 - 'path' Cross-Site Scripting 6.1 MEDIUM 🟠 4.3 MEDIUM 🟠
CVE-2019-15092 WordPress Plugin Import Export WordPress Users 1.3.1 - CSV Injection 7.3 HIGH 🔴 6.0 MEDIUM 🟠
CVE-2019-19031 Easy XML Editor <= 1.7.8 - XML External Entity Injection 8.1 HIGH 🔴 5.5 MEDIUM 🟠
CVE-2019-19032 XMLBlueprint <= 16.191112 - XML External Entity Injection 8.1 HIGH 🔴 5.5 MEDIUM 🟠
CVE-2020-9038 Joplin through 1.0.184 allows Arbitrary File Read via XSS 5.4 MEDIUM 🟠 3.5 LOW 🟢
CVE-2021-43091 SQL Injection in yeswiki/yeswiki 7.5 HIGH 🔴 5.0 MEDIUM 🟠

blank

Updated: