Back to directory
WRITEUP #561

“MyFlaw” — Cross Platform 0-Day RCE Vulnerability Discovered in Opera’s Browser

RCECSP bypassBrowser extension hackingBrowser hacking
byOleg Zaytsev
Program
Opera
Published
Jan 15, 2024
Added to HackDex
Jan 29, 2024
Read Full Writeuphttps://labs.guard.io/myflaw-cross-platform-0-day-rce-vulnerability-discovered-in-operas-browsers-099361a808ab
RELATED WRITEUPS
Universal Code Execution by Chaining Messages in Browser Extensions
XSSUniversal XSS
Vulnerabilities in Open Source C2 Frameworks
RCEOS command injection
[2,500$ Bug Bounty Write-Up] Remote Code Execution (RCE) via unclaimed Node package
RCEDependency confusion
Attacking PowerShell CLIXML Deserialization
DeserializationInsecure deserialization
Zero-Click Calendar invite — Critical zero-click vulnerability chain in macOS
RCEArbitrary file write

Built with ❤️ by Shubham Rawat