Back to directory

WRITEUP #6393

How we broke PHP, hacked Pornhub and earned $20,000

RCEMemory corruptionUse-After-Free

by@evonide(Ruslan Habalov)

Bounty

20,000

Program

PornHub

Published

Jul 23, 2016

Added to HackDex

Sep 15, 2022

Read Full Writeuphttps://web.archive.org/web/20220709205125/https://www.evonide.com/how-we-broke-php-hacked-pornhub-and-earned-20000-dollar/

▸ RELATED WRITEUPS

Ghost In The Ppl Part 1: Byovdll

OtherUse-After-Free

Part 2: From Byovdll To Arbitrary Code Execution In Lsass

OtherUse-After-Free

Ghost in the PPL Part 3: LSASS Memory Dump

OtherUse-After-Free

4 exploits, 1 bug: exploiting cve-2024-20017 4 different ways

RCEBuffer Overflow

Vulnerabilities in Open Source C2 Frameworks

RCEOS command injection

Built with ❤️ by Shubham Rawat