Back to directory

WRITEUP #1321

CVE-2023-1877 / RCE with Server-Side Template Injection in Microweber

RCESSTI

bycupc4k3

Program

Microweber

Published

Apr 5, 2023

Added to HackDex

Feb 27, 2024

Read Full Writeuphttps://cupc4k3.medium.com/cve-2023-1877-rce-with-server-side-template-injection-in-microweber-89da6a0e2603

▸ RELATED WRITEUPS

WPML Multilingual CMS Authenticated Contributor+ Remote Code Execution (RCE) via Twig Server-Side Template Injection (SSTI)

Chaining Three Bugs to Access All Your ServiceNow Data

Vulnerabilities in Open Source C2 Frameworks

RCEOS command injection

[2,500$ Bug Bounty Write-Up] Remote Code Execution (RCE) via unclaimed Node package

RCEDependency confusion

Attacking PowerShell CLIXML Deserialization

DeserializationInsecure deserialization

Built with ❤️ by Shubham Rawat