Back to directory

WRITEUP #4121

Universal Deserialisation Gadget for Ruby 2.x-3.x

DeserializationInsecure deserializationSecurity code reviewRCE

by@wcbowling(William Bowling / vakzz)

Program

Ruby

Published

Jan 7, 2021

Added to HackDex

Aug 8, 2023

Read Full Writeuphttps://devcraft.io/2021/01/07/universal-deserialisation-gadget-for-ruby-2-x-3-x.html

▸ RELATED WRITEUPS

Attacking PowerShell CLIXML Deserialization

DeserializationInsecure deserialization

Getting code execution on Veeam through CVE-2023-27532

RCEInsecure deserialization

Spip Preauth RCE 2024: Part 2, A Big Upload

Back To School - Exploiting A Remote Code Execution Vulnerability In Moodle

RCESecurity code review

WordPress GiveWP POP to RCE (CVE-2024-5932)

RCEPHP pop chain

Built with ❤️ by Shubham Rawat