Ayato Shitomi @ Fore-Z co.ltd Teedy 1.11 - Account Takeover via Stored Cross-Site Scripting (XSS)
webapps multiple CVE-2024-46278

Tomer Peled IOTransfer 4.0 - Remote Code Execution (RCE)
remote windows CVE-2022-24562

Tomas Melicher TP-Link Router AX50 firmware 210730 - Remote Code Execution (RCE) (Authenticated)
remote hardware CVE-2022-30075

Cr0wTom Socket.io-file 2.0.31 - Arbitrary File Upload
webapps multiple

Tomas Melicher VMWAre vCloud Director 9.7.0.15498291 - Remote Code Execution
webapps java

TomahawkAPT69 Microsoft Windows 10 Build 1803 < 1903 - 'COMahawk' Local Privilege Escalation
local windows CVE-2019-1405;CVE-2019-1322

Tomislav Paskalev WordPress Plugin User Role Editor < 4.25 - Privilege Escalation
webapps php

tomplixsee WordPress Plugin Ultimate Product Catalog 4.2.24 - PHP Object Injection
webapps php

tomplixsee Orangescrum 1.6.1 - Multiple Vulnerabilities
webapps php

David Tomaschik Belden Garrettcom 6K/10K Switches - Authentication Bypass / Memory Corruption
webapps php

David Tomaschik Alerton Webtalk 2.5/3.3 - Multiple Vulnerabilities
webapps linux

Tomislav Paskalev Microsoft Windows (x86) - 'NDISTAPI' Local Privilege Escalation (MS11-062)
local windows_x86 CVE-2011-1974;MS11-062

Tomislav Paskalev Microsoft Windows (x86) - 'afd.sys' Local Privilege Escalation (MS11-046)
local windows_x86 CVE-2011-1249;MS11-046

David Tomaschik ObiHai ObiPhone 1032/1062 < 5-0-0-3497 - Multiple Vulnerabilities
dos hardware

Maxim Tomashevich Intuit QuickBooks Desktop 2007 < 2016 - Arbitrary Code Execution
local windows

TOMIWA Konica Minolta FTP Utility 1.00 - CWD Command Overflow (SEH)
remote windows 21.0 CVE-2015-7768;OSVDB-127833