Back to directory
WRITEUP #2815

CVE-2021-38159: MOVEit Transfer SQL Injection Analysis

SQL Injection
by@haxor31337(Tuan Anh Nguyen)
Bounty
5,000
Program
Palantir Public
Published
Apr 5, 2022
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://blog.viettelcybersecurity.com/moveit-transfer-cve/
RELATED WRITEUPS
Directory Traversal, SQL Injection and Server-Side Request Forgery
SQL InjectionPath traversal
Breaking Down Barriers: Exploiting Pre-Auth SQL Injection In WhatsUp Gold - CVE-2024-6670
SQL InjectionReverse engineering
Bypassing airport security via SQL injection
SQL Injection
World of SELECT-only PostgreSQL Injections: (Ab)using the filesystem
SQL Injection
Exploiting authorization by nonce in WordPress plugins
RCEArbitrary file upload

Built with ❤️ by Shubham Rawat