writeups.xyz
/
Thomas Rinsma (@Thomasrinsma)
Title
Vulnerabilities
Programs
Authors
CVE-2024-29511 – Abusing Ghostscript’s OCR device
Arbitrary File Read
Arbitrary File Write
Security Code Review
Ghostscript
Thomas Rinsma (@Thomasrinsma)
CVE-2024-29510 – Exploiting Ghostscript using format strings
RCE
Format String Vulnerability
Memory Corruption
Ghostscript
Thomas Rinsma (@Thomasrinsma)
CVE-2024-4367 – Arbitrary JavaScript execution in PDF.js
XSS
Mozilla (PDF.js)
Thomas Rinsma (@Thomasrinsma)
Vulnerability write-up - "Dangerous assumptions"
Prototype Pollution
SQL Injection
Security Code Review
DIVD
Thomas Rinsma (@Thomasrinsma)
Kevin Valk (@Krvalk)
Page 1 of 1
writeups.xyz
/
Thomas Rinsma (@Thomasrinsma)