Back to directory
WRITEUP #734

Uncovering a Command Injection, $2400 Bounty

RCEOS command injectionFile uploadWeak credentials
by@omidxrz(0xrz)
Bounty
2,400
Program
-
Published
Oct 14, 2023
Added to HackDex
Feb 6, 2024
Read Full Writeuphttps://blog.voorivex.team/uncovering-a-command-injection-2400-bounty
RELATED WRITEUPS
Vulnerabilities in Open Source C2 Frameworks
RCEOS command injection
Spip Preauth RCE 2024: Part 2, A Big Upload
RCEFile upload
SSD Advisory – SonicWall SMA100 Stored XSS To RCE
RCEOS command injection
[2,500$ Bug Bounty Write-Up] Remote Code Execution (RCE) via unclaimed Node package
RCEDependency confusion
Attacking PowerShell CLIXML Deserialization
DeserializationInsecure deserialization

Built with ❤️ by Shubham Rawat