Back to directory

WRITEUP #1981

Practical Client Side Path Traversal Attacks

OtherPath traversalClient-side Path TraversalOpen redirectCSS injection

by@medi_0ne(Medi)

Bounty

$250

Program

Acronis

Published

Nov 4, 2022

Added to HackDex

Nov 8, 2022

Read Full Writeuphttps://mr-medi.github.io/research/2022/11/04/practical-client-side-path-traversal-attacks.html

▸ RELATED WRITEUPS

Oracle Retail Xstore Suite: Pre-authenticated Path Traversal

OtherPath traversal

Securing Developer Tools: Unpatched Code Vulnerabilities in Gogs (2/2)

OtherPath traversal

Data Theft in Salesforce: Manipulating Public Links

OtherSOQL injection

Directory Traversal, SQL Injection and Server-Side Request Forgery

SQL InjectionPath traversal

When Certificates Fail: A Story of Bypassed MFA in Remote Access

Other2FA / MFA bypass

Built with ❤️ by Shubham Rawat