Back to directory
WRITEUP #806

Finding A Pop Chain On A Common Symfony Bundle: Part 1

DeserializationInsecure deserializationSecurity code review
by@_remsio_(Rémi Matasse)
Program
doctrine-bundle (Symfony package)
Published
Sep 12, 2023
Added to HackDex
Sep 22, 2023
Read Full Writeuphttps://www.synacktiv.com/en/publications/finding-a-pop-chain-on-a-common-symfony-bundle-part-1.html
RELATED WRITEUPS
Attacking PowerShell CLIXML Deserialization
DeserializationInsecure deserialization
Getting code execution on Veeam through CVE-2023-27532
RCEInsecure deserialization
Dynamics 365 Business Central - A Journey With Ups and Downs
DeserializationInsecure deserialization
Spip Preauth RCE 2024: Part 2, A Big Upload
RCEFile upload
Basic HTTP Authentication Risk: Uncovering pyspider Vulnerabilities
XSSReflected XSS

Built with ❤️ by Shubham Rawat