Recent posts
CVE-2023-26818 Part1: MacOS TCC Bypass with telegram using DyLib Injection
In this analysis we discussing a vulnerability exist in telegram app on MacOS known as CVE-2023-26818.
CVE-2021-38294: Apache Storm Nimbus Command Injection
Command Injection vulnerability that affects Nimbus server in apache storm.
CVE-2021-44521: Apache Cassandra Remote Code Execution
Detailed analysis for Apache Cassandra CVE-2021-44521 Remote Code Execution & Sandbox/Security Bypass.
CVE-2021-45232: Apache APISIX Dashboard Unauthorized Access & Unauth-RCE
Detailed analysis for CVE-2021-45232, an Unauthorized Access vulnerability in apache apisix & how it can be used to a...
Exploit Writing: CVE-2022-22733 Privilege Escalation & RCE
Writing Exploit for CVE-2022-22733: Apache ShardingSphere ElasticJob-UI.
CVE-2022-22733: Apache ShardingSphere ElasticJob-UI privilege escalation
Detailed analysis for CVE-2022-22733 a privilege escalation vulnerability through exposure of sensitive data.
CVE-2023-24815: Vert.x-Web Path Traversal Escape
A detailed analysis for a vulnerability discovered in `Vert.x-Web` known as `CVE-2023-24815`.
CVE-2021-42885: deviceMac Remote Command Injection
A detailed analysis for CVE-2021-42885 a deviceMac Remote Command Injection vulnerability in TOTOLINK EX1200T model.