Back to directory

WRITEUP #57

How I got $24000 Bounty from a Log4j RCE in Apple App Store.

RCEComponents with known vulnerabilities

by@Hunter_Huzaifa_(Mehar huzaifa)

Bounty

24,000

Program

Apple

Published

Aug 25, 2024

Added to HackDex

Aug 26, 2024

Read Full Writeuphttps://medium.com/@meharhuzaifa777/exploiting-log4j-rce-in-apple-app-store-ca99a549de1f

▸ RELATED WRITEUPS

Studying 0days: How we hacked Anki, the world's most popular flashcard app

RCEComponents with known vulnerabilities

We hacked Anki - 0 day exploit from studying someone elses flashcards

RCEComponents with known vulnerabilities

Vulnerabilities in Open Source C2 Frameworks

RCEOS command injection

[2,500$ Bug Bounty Write-Up] Remote Code Execution (RCE) via unclaimed Node package

RCEDependency confusion

Attacking PowerShell CLIXML Deserialization

DeserializationInsecure deserialization

Built with ❤️ by Shubham Rawat