Back to directory
WRITEUP #1760

How I found multiple critical bugs in Red Bull

Auth BypassAuthentication bypassHTTP response manipulationPath traversalLFIXSSSQL injectionRCEUnrestricted file uploadRFISecurity code review
by@_bergee_(Bartłomiej Bergier)
Program
Red Bull
Published
Dec 26, 2022
Added to HackDex
Dec 30, 2022
Read Full Writeuphttps://bergee.it/blog/how-i-found-multiple-critical-bugs-in-red-bull/
RELATED WRITEUPS
Traccar 5 Remote Code Execution Vulnerabilities
RCEUnrestricted file upload
Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!
RCEConfusion attack
Exploiting authorization by nonce in WordPress plugins
RCEArbitrary file upload
Path Traversal and Code Execution in CSLA.NET (CVE-2024-28698)
RCEPath traversal
Studying 0days: How we hacked Anki, the world's most popular flashcard app
RCEComponents with known vulnerabilities

Built with ❤️ by Shubham Rawat