JNDI Injection | writeups.xyz

Title	Vulnerabilities	Programs	Authors
JNDI Injection Remote Code Execution via Path Manipulation in MemoryUserDatabaseFactory	RCE JNDI Injection Security Code Review	Undisclosed	Steven Seeley (@Steventseeley)
Chained to hit: Discovering new vectors to gain remote and root access in SAP Enterprise Software	SAP Java RMI RCE JNDI Injection SQL Injection DoS SSRF Missing Authentication HTTP Header Injection Privilege Escalation Information Disclosure Memory Corruption	SAP	Pablo Artuso (@Lmkalg) Yvan Genuer
Adobe ColdFusion Pre-Auth RCE(s)	RCE ColdFusion JNDI Injection Insecure Deserialization Security Code Review Patch Diffing	Adobe (ColdFusion)	Harsh Jaiswal (@Rootxharsh) Rahul Maini (@Iamnoooob)
How I Hacked Facebook Again! Unauthenticated RCE on MobileIron MDM	RCE JNDI Injection	Meta / Facebook	Orange Tsai (@Orange_8361)

Page 1 of 1