Back to directory

WRITEUP #1786

From PostAuth RCE to PreAuth RCE on Liferay Portal

RCEInsecure deserialization

byRV Sharma

Program

Liferay

Published

Dec 20, 2022

Added to HackDex

Dec 26, 2022

Read Full Writeuphttps://dappsec.substack.com/p/an-advisory-for-cve-2019-16891-from

▸ RELATED WRITEUPS

Attacking PowerShell CLIXML Deserialization

DeserializationInsecure deserialization

Getting code execution on Veeam through CVE-2023-27532

RCEInsecure deserialization

3 ways to get Remote Code Execution in Kafka UI

RCEInsecure deserialization

Shelltorch Explained: Multiple Vulnerabilities in Pytorch Model Server (Torchserve) (CVSS 9.9, CVSS 9.8) Walkthrough

Vulnerabilities in Open Source C2 Frameworks

RCEOS command injection

Built with ❤️ by Shubham Rawat