Back to directory

WRITEUP #1488

The Vulnerability That Exposed an UN Website to Remote Code Execution

RCEComponents with known vulnerabilitiesOGNL injection

by@manisashankm(Mullangisashank)

Program

United Nations

Published

Feb 27, 2023

Added to HackDex

Mar 2, 2023

Read Full Writeuphttps://medium.com/@mullangisashank/the-vulnerability-that-exposed-an-un-website-to-remote-code-execution-dfe377b82049

▸ RELATED WRITEUPS

How I got $24000 Bounty from a Log4j RCE in Apple App Store.

RCEComponents with known vulnerabilities

Studying 0days: How we hacked Anki, the world's most popular flashcard app

RCEComponents with known vulnerabilities

We hacked Anki - 0 day exploit from studying someone elses flashcards

RCEComponents with known vulnerabilities

Vulnerabilities in Open Source C2 Frameworks

RCEOS command injection

[2,500$ Bug Bounty Write-Up] Remote Code Execution (RCE) via unclaimed Node package

RCEDependency confusion

Built with ❤️ by Shubham Rawat