Back to directory

WRITEUP #3404

PowerShell script, Unicode quotes and ウィンドウズ - a story of uncommon command injection

RCEPowerShell injection

byKrzysztof Andrusiak

Program

Zoho (ManageEngine ADSelfService Plus)

Published

Sep 14, 2021

Added to HackDex

Sep 14, 2021

Read Full Writeuphttps://blog.stmcyber.com/powershell-unicode-quotes-and-command-injection/

▸ RELATED WRITEUPS

Vulnerabilities in Open Source C2 Frameworks

RCEOS command injection

[2,500$ Bug Bounty Write-Up] Remote Code Execution (RCE) via unclaimed Node package

RCEDependency confusion

Attacking PowerShell CLIXML Deserialization

DeserializationInsecure deserialization

Zero-Click Calendar invite — Critical zero-click vulnerability chain in macOS

RCEArbitrary file write

We Spent $20 To Achieve RCE And Accidentally Became The Admins Of .MOBI

Built with ❤️ by Shubham Rawat