Arbitrary File Upload | writeups.xyz

Title	Vulnerabilities	Programs	Authors
Exploiting authorization by nonce in WordPress plugins	RCE Arbitrary File Upload SQL Injection Security Code Review	Wordfence	Bartek Nowotarski
CVE-2023-33466 - Exploiting Healthcare Servers with Polyglot Files	DICOM RCE Arbitrary File Overwrite Arbitrary File Upload Patch Diffing	Asus	TheZero (@Th3Zer0) Suidpit (@Suidpit)
CVE-2023-36844 And Friends: RCE In Juniper Devices	RCE Missing Authentication Arbitrary File Upload Security Code Review	Juniper	WatchTowr (@Watchtowrcyber)
Kramer VIA GO² – Multiple issues	RCE SQL Injection Arbitrary File Upload Arbitrary File Read	Kramer	Jim Rush (@JimSRush) Tomais Williamson (@Softpoison_)
Vocera Report Server Pwnage	RCE Arbitrary File Upload Path Traversal Zip Slip Attack	Stryker	B0yd (@Rwincey)
PandoraFMS - Pre-Auth Remote Code Execution	RCE Path Traversal Arbitrary File Upload LFI Security Code Review	PandoraFMS	Esj4y (@Esj4y)
CVE-2020-11518: how I bruteforced my way into your Active Directory	RCE Insecure Deserialization Arbitrary File Upload Bruteforce	Undisclosed	Pieter Hiele (@Honoki)
ManageEngine ServiceDesk Plus: Arbitrary File Upload	Arbitrary File Upload RCE	Undisclosed	Duc Anh Bui
Arbitary File Upload too Stored XSS - Bug Bounty	Arbitrary File Upload Stored XSS	Undisclosed	M0chan (@M0chan98)

Page 1 of 1