Back to directory
WRITEUP #844

Leaking Jupyter instance auth token chaining CVE-2023-39968, CVE-2024-22421 and a chromium bug

OtherClient-side Path TraversalOpen redirect
by@davwwwx(Davit)
Program
JupyterGoogle (Chromium)
Published
Aug 30, 2023
Added to HackDex
Jul 8, 2024
Read Full Writeuphttps://blog.xss.am/2023/08/cve-2023-39968-jupyter-token-leak/
RELATED WRITEUPS
Data Theft in Salesforce: Manipulating Public Links
OtherSOQL injection
When Certificates Fail: A Story of Bypassed MFA in Remote Access
Other2FA / MFA bypass
SSTI in Bug Bounty Program: The Time I Played with Handlebars and Broke Stuff
OtherSSTI
Ghost In The Ppl Part 1: Byovdll
OtherUse-After-Free
Part 2: From Byovdll To Arbitrary Code Execution In Lsass
OtherUse-After-Free

Built with ❤️ by Shubham Rawat