writeups.xyz writeups.xyz / Steven Seeley (@Steventseeley)

Title Vulnerabilities Programs Authors
JNDI Injection Remote Code Execution via Path Manipulation in MemoryUserDatabaseFactory
DoubleTrouble
VMware Workspace One Access
Eat What You Kill :: Pre-authenticated Remote Code Execution in VMWare NSX Manager
IAM Whoever I Say IAM :: Infiltrating VMWare Workspace ONE Access Using a 0-Click Exploit
From Shared Dash to Root Bash :: Pre-Authenticated RCE in VMWare vRealize Operations Manager
ZohOwned :: A Critical Authentication Bypass on Zoho ManageEngine Desktop Central
Pwn2Own Vancouver 2021 :: Microsoft Exchange Server Remote Code Execution
Making Clouds Rain :: Remote Code Execution in Microsoft Office 365