Lidor Ben Shitrit | writeups.xyz

Title	Vulnerabilities	Programs	Authors
Azure HDInsight: The Sequel – Unveiling 3 New Vulnerabilities That Could Have Led to Privilege Escalations and Denial of Service	XXE Privilege Escalation ReDoS Security Code Review	Microsoft (Azure HDInsight)	Lidor Ben Shitrit
Azure HDInsight Riddled With XSS Vulnerabilities via Apache Services	Stored XSS Reflected XSS	Microsoft (Azure HDInsight)	Lidor Ben Shitrit
Two XSS Vulnerabilities in Azure with Embedded postMessage IFrames	XSS PostMessage	Microsoft (Azure)	Lidor Ben Shitrit
Super FabriXss: From XSS to an RCE in Azure Service Fabric Explorer by Abusing an Event Tab Cluster Toggle (CVE-2023-23383)	RCE XSS Cloud	Microsoft (Azure)	Lidor Ben Shitrit
How Orca Found Server-Side Request Forgery (SSRF) Vulnerabilities in Four Different Azure Services	SSRF Cloud	Microsoft (Azure)	Lidor Ben Shitrit
FabriXss (CVE-2022-35829): How We Managed to Abuse a Custom Role User Using CSTI and Stored XSS in Azure Fabric Explorer	CSTI Stored XSS	Microsoft	Lidor Ben Shitrit
Oracle Server Side Request Forgery (SSRF) Metadata	SSRF	Oracle	Lidor Ben Shitrit

Page 1 of 1