Back to directory

WRITEUP #210

From Limited file read to full access on Jenkins (CVE-2024-23897)

RCEArbitrary file read

byAhmed Sherif

Program

-

Published

Jul 2, 2024

Added to HackDex

Aug 6, 2024

Read Full Writeuphttps://xphantom.nl/posts/crypto-attack-jenkins/

▸ RELATED WRITEUPS

Analysis of CVE-2024-43044 — From file read to RCE in Jenkins through agents

RCEArbitrary file read

Studying 0days: How we hacked Anki, the world's most popular flashcard app

RCEComponents with known vulnerabilities

We hacked Anki - 0 day exploit from studying someone elses flashcards

RCEComponents with known vulnerabilities

Vulnerabilities in Open Source C2 Frameworks

RCEOS command injection

[2,500$ Bug Bounty Write-Up] Remote Code Execution (RCE) via unclaimed Node package

RCEDependency confusion

Built with ❤️ by Shubham Rawat