Back to directory
WRITEUP #610

Finding Insecure TrustManagers and Disabled Hostname Verification with CodeQL

RCESecurity code reviewMiTM
by@intrigus_(intrigus)
Program
Apache Software FoundationOpencastballerina-platformopenMF
Published
Dec 27, 2023
Added to HackDex
Jan 29, 2024
Read Full Writeuphttps://intrigus.org/research/2023/11/27/finding-insecure-trust-managers-and-disabled-hostname-verification-with-codeql/
RELATED WRITEUPS
Getting code execution on Veeam through CVE-2023-27532
RCEInsecure deserialization
Spip Preauth RCE 2024: Part 2, A Big Upload
RCEFile upload
Back To School - Exploiting A Remote Code Execution Vulnerability In Moodle
RCESecurity code review
WordPress GiveWP POP to RCE (CVE-2024-5932)
RCEPHP pop chain
Traccar 5 Remote Code Execution Vulnerabilities
RCEUnrestricted file upload

Built with ❤️ by Shubham Rawat