Adam Crosser | writeups.xyz

Title	Vulnerabilities	Programs	Authors
3CX Phone System Local Privilege Escalation Vulnerability	Local Privilege Escalation Arbitrary File Read	3CX	Adam Crosser
Compromising ByteDance’s Rspack using GitHub Actions Vulnerabilities	CI/CD Pwn Request	ByteDance (Rspack)	Adam Crosser John Stawinski
Local Privilege Escalation Vulnerability in Ant Media Server (CVE-2024-32656)	Local Privilege Escalation JMX	Ant Media	Adam Crosser
MeshCentral Cross-Site Websocket Hijacking Vulnerability (CVE-2024-26135)	Cross-Site WebSocket Hijacking (CSWH)	MeshCentral	Adam Crosser
Relution Remote Code Execution via Java Deserialization Vulnerability	RCE Insecure Deserialization Security Code Review	Relution	Adam Crosser
SonicWall WXA – Authentication Bypass and Remote Code Execution Vulnerability	Authentication Bypass Hardcoded Credentials RCE Argument Injection Security Code Review	SonicWall	Adam Crosser
Analyzing the SonicWall Custom Grub LUKS Encryption Modifications	Reverse Engineering	SonicWall	Adam Crosser Michael Weber (@BouncyHat)
Technical Advisory: Vulnerabilities Identified within ListServ	CSRF Samesite Cookie Bypass Reflected XSS Stored XSS Unrestricted File Upload DLL Hijacking Local Privilege Escalation Buffer Overflow Memory Corruption	ListServ	Adam Crosser
DoubleQlik: Bypassing the Fix for CVE-2023-41265 to Achieve Unauthenticated Remote Code Execution	RCE Path Traversal HTTP Request Tunneling HTTP Request Smuggling Security Code Review	Qlik	Adam Crosser
ZeroQlik: Achieving Unauthenticated Remote Code Execution via HTTP Request Tunneling and Path Traversal	RCE Path Traversal HTTP Request Tunneling HTTP Request Smuggling Security Code Review	Qlik	Adam Crosser
Bypassing Akamai’s Web Application Firewall Using an Injected Content-Encoding Header	WAF Bypass CRLF Injection XSS	Akamai	Adam Crosser

Page 1 of 1