| Analysis of CVE-2024-43044 — From file read to RCE in Jenkins through agents |
|
|
|
| 3CX Phone System Local Privilege Escalation Vulnerability |
|
|
|
| Studying 0days: How we hacked Anki, the world's most popular flashcard app |
|
|
|
| Firmware Security: Alcatel-Lucent ALE-DeskPhone |
|
|
|
| CVE-2024-29511 – Abusing Ghostscript’s OCR device |
|
|
|
| From Limited file read to full access on Jenkins (CVE-2024-23897) |
|
|
|
| Exploiting Steam: Usual and Unusual Ways in the CEF Framework |
|
|
|
| Dangerous Import: SourceForge Patches Critical Code Vulnerability |
|
|
|
| Excessive Expansion: Uncovering Critical Security Vulnerabilities in Jenkins (CVE-2024-23897 & CVE-2024-23898) |
|
|
|
| Unauthenticated RCE in Adobe Coldfusion – CVE-2023-26360 |
|
|
|
| Technical Advisory – Multiple Vulnerabilities in PandoraFMS Enterprise |
|
|
|
| Silverpeas App: Multiple CVEs leading to File Read on Server |
|
|
|
| Multiple Vulnerabilities In Extreme Networks ExtremeXOS |
|
|
|
| Apache Superset Part II: RCE, Credential Harvesting and More |
|
|
|
| Leaking File Contents with a Blind File Oracle in Flarum |
|
|
|
| [REL] A Journey Into Hacking Google Search Appliance |
|
|
|
| Partial File Read in phpList <= 3.6.12 (CVE-2023-35834) |
|
|
|
| Kramer VIA GO² – Multiple issues |
|
|
|
| Pretalx Vulnerabilities: How to get accepted at every conference |
|
|
|
| PHP Filter Chains: File Read From Error-based Oracle |
|
|
|
| Attacking .NET Web Services |
|
|
|
| Multiple vulnerabilities in Dell Unisphere for PowerMax vApp, VASA Provider vApp and Solutions Enabler vApp CVE-2022-45103 / CVE-2022-45104 |
|
|
|
| ImageMagick: The hidden vulnerability behind your online images |
|
|
|
| OpenEMR - Remote Code Execution in your Healthcare System |
|
|
|
| Multiple Vulnerabilities in Proxmox VE & Proxmox Mail Gateway |
|
|
|
writeups.xyz
/
Arbitrary File Read