Back to directory

WRITEUP #2447

Advisory | Roxy-WI Unauthenticated Remote Code Executions CVE-2022-31137

RCEAuthentication bypass

by@ncilengir(Nuri Çilengir)

Program

Roxy-WI

Published

Jul 26, 2022

Added to HackDex

Sep 15, 2022

Read Full Writeuphttps://pentest.blog/advisory-roxy-wi-unauthenticated-remote-code-executions-cve-2022-31137/

▸ RELATED WRITEUPS

Vulnerabilities in Open Source C2 Frameworks

RCEOS command injection

Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!

RCEConfusion attack

[2,500$ Bug Bounty Write-Up] Remote Code Execution (RCE) via unclaimed Node package

RCEDependency confusion

Attacking PowerShell CLIXML Deserialization

DeserializationInsecure deserialization

Zero-Click Calendar invite — Critical zero-click vulnerability chain in macOS

RCEArbitrary file write

Built with ❤️ by Shubham Rawat