Solar, exploiting log4j - I have just completed this room! Check it out: https://tryhackme.com/room/solar #tryhackme #log4j #solr #cve-2021-44228 #log4shell #solar через @realtryhackme
TryHackMe
Solar, exploiting log4j
Explore CVE-2021-44228, a vulnerability in log4j affecting almost all software under the sun.
CVE-2021-41773/42013 - I have just completed this room! Check it out: https://tryhackme.com/room/cve202141773 #tryhackme #security #apache #cve-2021-41773 #cve-2021-42013 #path-traversal #security misconfiguration #cve202141773 через @realtryhackme
TryHackMe
CVE-2021-41773/42013
A small explanation of an Apache path traversal bug and an incomplete fix
Year of the Jellyfish - I have just completed this room! Check it out: https://tryhackme.com/room/yearofthejellyfish #tryhackme #linux #jellyfin #cve #code #cert-style #muirlandoracle #New Year #newyear #yearofthejellyfish через @realtryhackme
Сложность: Тяжелая (Hard).
Сложность: Тяжелая (Hard).
TryHackMe
Year of the Jellyfish
Some boxes sting...
#cve
#exploit
#bug_bounty
A PoC for the CVE-2022-44268 - ImageMagick arbitrary file read
https://github.com/voidz0r/CVE-2022-44268
#exploit
#bug_bounty
A PoC for the CVE-2022-44268 - ImageMagick arbitrary file read
https://github.com/voidz0r/CVE-2022-44268
GitHub
GitHub - voidz0r/CVE-2022-44268: A PoC for the CVE-2022-44268 - ImageMagick arbitrary file read
A PoC for the CVE-2022-44268 - ImageMagick arbitrary file read - voidz0r/CVE-2022-44268
#bug_bounty
#cve
CVE-2023-27997 Is Exploitable, and 69% of FortiGate Firewalls Are Vulnerable
https://bishopfox.com/blog/cve-2023-27997-exploitable-and-fortigate-firewalls-vulnerable
#cve
CVE-2023-27997 Is Exploitable, and 69% of FortiGate Firewalls Are Vulnerable
https://bishopfox.com/blog/cve-2023-27997-exploitable-and-fortigate-firewalls-vulnerable
Bishop Fox
CVE-2023-27997 is Exploitable, and 69% of FortiGate Firewalls on…
Learn more about analysis on CVE-2023-27997, a heap overflow in FortiOS, the operating system behind FortiGate firewalls, enabling remote code execution.
#bug_bounty
#cve
#mikrotik
Exploiting MikroTik RouterOS Hardware with CVE-2023-30799
https://vulncheck.com/blog/mikrotik-foisted-revisited
#cve
#mikrotik
Exploiting MikroTik RouterOS Hardware with CVE-2023-30799
https://vulncheck.com/blog/mikrotik-foisted-revisited
VulnCheck
VulnCheck - Outpace Adversaries
Vulnerability intelligence that predicts avenues of attack with speed and accuracy.
#exploit
#cve
CVE-2023-29357: Microsoft SharePoint Server Elevation of Privilege
https://github.com/Chocapikk/CVE-2023-29357/tree/main
#cve
CVE-2023-29357: Microsoft SharePoint Server Elevation of Privilege
https://github.com/Chocapikk/CVE-2023-29357/tree/main
GitHub
GitHub - Chocapikk/CVE-2023-29357: Microsoft SharePoint Server Elevation of Privilege Vulnerability
Microsoft SharePoint Server Elevation of Privilege Vulnerability - Chocapikk/CVE-2023-29357
#bug_bounty
#cve
#rce
RCE in Progress WS_FTP Ad Hoc via IIS HTTP Modules (CVE-2023-40044)
https://www.assetnote.io/resources/research/rce-in-progress-ws-ftp-ad-hoc-via-iis-http-modules-cve-2023-40044
#cve
#rce
RCE in Progress WS_FTP Ad Hoc via IIS HTTP Modules (CVE-2023-40044)
https://www.assetnote.io/resources/research/rce-in-progress-ws-ftp-ad-hoc-via-iis-http-modules-cve-2023-40044
www.assetnote.io
RCE in Progress WS_FTP Ad Hoc via IIS HTTP Modules (CVE-2023-40044)
Over the last year or so, we've seen the mass exploitation of managed file transfer software. From GoAnywhere MFT, MOVEIt, and our own work on Citrix Sharefile. The threats towards enterprises through managed file transfer software has really hit home after…
#bug_bounty
#cve
GitHub - ErikWynter/CVE-2023-22515-Scan: Scanner for CVE-2023-22515 - Broken Access Control Vulnerability in Atlassian Confluence
https://github.com/ErikWynter/CVE-2023-22515-Scan
#cve
GitHub - ErikWynter/CVE-2023-22515-Scan: Scanner for CVE-2023-22515 - Broken Access Control Vulnerability in Atlassian Confluence
https://github.com/ErikWynter/CVE-2023-22515-Scan
GitHub
GitHub - ErikWynter/CVE-2023-22515-Scan: Scanner for CVE-2023-22515 - Broken Access Control Vulnerability in Atlassian Confluence
Scanner for CVE-2023-22515 - Broken Access Control Vulnerability in Atlassian Confluence - ErikWynter/CVE-2023-22515-Scan
#bug_bounty
#rce
#cve
CVE-2023-42793 - JetBrains TeamCity RCE
https://blog.projectdiscovery.io/cve-2023-42793-vulnerability-in-jetbrains-teamcity/
#rce
#cve
CVE-2023-42793 - JetBrains TeamCity RCE
https://blog.projectdiscovery.io/cve-2023-42793-vulnerability-in-jetbrains-teamcity/
ProjectDiscovery Blog
JetBrains TeamCity RCE - CVE-2023-42793
A recently disclosed vulnerability in JetBrains can lead to Remote Code Execution. Are you up to date?
#bug_bounty
#cve
CVE-2022-4908: SOP bypass in Chrome using Navigation API - Johan Carlsson
https://joaxcar.com/blog/2023/10/06/cve-2022-4908-sop-bypass-in-chrome-using-navigation-api/
#cve
CVE-2022-4908: SOP bypass in Chrome using Navigation API - Johan Carlsson
https://joaxcar.com/blog/2023/10/06/cve-2022-4908-sop-bypass-in-chrome-using-navigation-api/
Johan Carlsson
CVE-2022-4908: SOP bypass in Chrome using Navigation API - Johan Carlsson
Last year, I discovered a Same-Origin Policy (SOP) bypass in Chrome that allowed an attacker to leak the full URLs of another window’s navigation history. While attacks could be conducted cross-origin, these attacks were only possible if the two windows were…
#bug_bounty
#citrix
#cve
Citrix Bleed: Leaking Session Tokens with CVE-2023-4966
https://www.assetnote.io/resources/research/citrix-bleed-leaking-session-tokens-with-cve-2023-4966
#citrix
#cve
Citrix Bleed: Leaking Session Tokens with CVE-2023-4966
https://www.assetnote.io/resources/research/citrix-bleed-leaking-session-tokens-with-cve-2023-4966
www.assetnote.io
Citrix Bleed: Leaking Session Tokens with CVE-2023-4966
It's time for another round Citrix Patch Diffing! Earlier this month Citrix released a security bulletin which mentioned "unauthenticated buffer-related vulnerabilities" and two CVEs. These issues affected Citrix NetScaler ADC and NetScaler Gateway.