Back to directory

WRITEUP #1503

draw.io CVEs

SSRFOAuthOpen redirectToken leakSecurity code review

by@caioluders

Program

draw.io

Published

Feb 24, 2023

Added to HackDex

Feb 28, 2023

Read Full Writeuphttps://lude.rs/h4ck1ng/draw.io_cves.html

▸ RELATED WRITEUPS

IIS welcome page to source code review to LFI!

NTLM Credential Theft in Python Windows Applications

SSRFNTLMv2 hash disclosure

CVE-2024-38428 Wget Vulnerability: All you need to know

Unauthenticated SSRF on Havoc C2 teamserver via spoofed demon agent

SSRFSecurity code review

Directory Traversal, SQL Injection and Server-Side Request Forgery

SQL InjectionPath traversal

Built with ❤️ by Shubham Rawat