Back to directory

WRITEUP #62

Traccar 5 Remote Code Execution Vulnerabilities

RCEUnrestricted file uploadPath traversalSecurity code review

byNaveen Sunkavally

Program

Traccar

Published

Aug 23, 2024

Added to HackDex

Aug 26, 2024

Read Full Writeuphttps://www.horizon3.ai/attack-research/disclosures/traccar-5-remote-code-execution-vulnerabilities/

▸ RELATED WRITEUPS

Path Traversal and Code Execution in CSLA.NET (CVE-2024-28698)

RCEPath traversal

WhatsUp Gold Pre-Auth RCE WriteDataFile Primitive (CVE-2024-4883)

RCEPath traversal

WhatsUp Gold Pre-Auth RCE GetFileWithoutZip Primitive (CVE-2024-4885)

RCEPath traversal

Getting code execution on Veeam through CVE-2023-27532

RCEInsecure deserialization

Spip Preauth RCE 2024: Part 2, A Big Upload

Built with ❤️ by Shubham Rawat