Back to directory
WRITEUP #689

Magento Template Engine, A Story Of CVE-2022-24086

RCESSTISecurity code review
by@blueshhit(Antoine Gicquel)
Program
Magento
Published
Nov 16, 2023
Added to HackDex
Jan 29, 2024
Read Full Writeuphttps://www.synacktiv.com/publications/magento-template-engine-a-story-of-cve-2022-24086
RELATED WRITEUPS
WPML Multilingual CMS Authenticated Contributor+ Remote Code Execution (RCE) via Twig Server-Side Template Injection (SSTI)
RCESSTI
Chaining Three Bugs to Access All Your ServiceNow Data
RCESSTI
Getting code execution on Veeam through CVE-2023-27532
RCEInsecure deserialization
Spip Preauth RCE 2024: Part 2, A Big Upload
RCEFile upload
Back To School - Exploiting A Remote Code Execution Vulnerability In Moodle
RCESecurity code review

Built with ❤️ by Shubham Rawat