Back to directory
WRITEUP #938

A Twist in the Code: OpenMeetings Vulnerabilities through Unexpected Application State

Auth BypassAccount takeoverRCENull-Byte injectionSecurity code review
by@scryh_(Stefan Schiller)
Program
Apache OpenMeetings
Published
Jul 19, 2023
Added to HackDex
Jul 24, 2023
Read Full Writeuphttps://www.sonarsource.com/blog/a-twist-in-the-code-openmeetings-vulnerabilities-through-unexpected-application-state/
RELATED WRITEUPS
Interesting Story of an Account Takeover Vulnerability
Auth BypassAccount takeover
Getting code execution on Veeam through CVE-2023-27532
RCEInsecure deserialization
Spip Preauth RCE 2024: Part 2, A Big Upload
RCEFile upload
Back To School - Exploiting A Remote Code Execution Vulnerability In Moodle
RCESecurity code review
WordPress GiveWP POP to RCE (CVE-2024-5932)
RCEPHP pop chain

Built with ❤️ by Shubham Rawat