Back to directory

WRITEUP #2656

External Authentication bypass in ingress-nginx

Auth BypassPath traversalAuthentication bypass

by@xvnpw(Niemiec Marcin)

Bounty

500

Program

Kubernetes

Published

May 29, 2022

Added to HackDex

Sep 15, 2022

Read Full Writeuphttps://xvnpw.github.io/posts/external_authentication_bypass_in_ingress_nginx/

▸ RELATED WRITEUPS

Breaking the Barrier: Admin Panel Takeover Worth $3500

Auth BypassAuthentication bypass

SAML Authentication Bypass Leading to Admin Panel Access

Auth BypassSAML

Breaking Down Barriers: Exploiting Authenticated IPC Clients

Auth BypassIPC client

Vulnerabilities in Open Source C2 Frameworks

RCEOS command injection

Interesting Story of an Account Takeover Vulnerability

Auth BypassAccount takeover

Built with ❤️ by Shubham Rawat