Back to directory
WRITEUP #2138

Orange Arbitrary Command Execution

RCEDocker daemon misconfigurationMissing authentication
by@OmarHashem666(Omar Hashem)
Program
Orange
Published
Sep 29, 2022
Added to HackDex
Oct 2, 2022
Read Full Writeuphttps://omar0x01.medium.com/orange-arbitrary-command-execution-75ba7f283d53
RELATED WRITEUPS
From MLOps to MLOops: Exposing the Attack Surface of Machine Learning Platforms
AI / LLMAI
Vulnerabilities in Open Source C2 Frameworks
RCEOS command injection
[2,500$ Bug Bounty Write-Up] Remote Code Execution (RCE) via unclaimed Node package
RCEDependency confusion
Attacking PowerShell CLIXML Deserialization
DeserializationInsecure deserialization
Zero-Click Calendar invite — Critical zero-click vulnerability chain in macOS
RCEArbitrary file write

Built with ❤️ by Shubham Rawat