writeups.xyz
/
Sana Oshika (@Bigshika)
Title
Vulnerabilities
Programs
Authors
Azure Devops CICD Pipelines - Command Injection With Parameters, Variables And A Discussion On Runner Hijacking
CI/CD
OS Command Injection
RCE
Microsoft (Azure DevOps Pipelines)
Sana Oshika (@Bigshika)
ASP.NET Boilerplate Multiple Vulnerabilities
Broken Authentication
Hardcoded Credentials
JWT
Padding Oracle Attack
Cryptographic Issues
Volosoft (ASP.NET Boilerplate)
Sana Oshika (@Bigshika)
SSD Advisory – VhdmpiValidateVirtualDiskSurface LPE
Local Privilege Escalation
Microsoft (Windows)
Sana Oshika (@Bigshika)
Page 1 of 1
writeups.xyz
/
Sana Oshika (@Bigshika)