Back to directory
WRITEUP #96

Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!

RCEConfusion attackXSSAccess control bypassAuthentication bypassSSRF
by@orange_8361(Orange Tsai)
Program
Apache HTTP ServerModSecurityRedmine
Published
Aug 9, 2024
Added to HackDex
Aug 14, 2024
Read Full Writeuphttps://blog.orange.tw/2024/08/confusion-attacks-en.html
RELATED WRITEUPS
Vulnerabilities in Open Source C2 Frameworks
RCEOS command injection
Vulnerabilities in Homepage Dashboard
RCESSRF
From MLOps to MLOops: Exposing the Attack Surface of Machine Learning Platforms
AI / LLMAI
Studying 0days: How we hacked Anki, the world's most popular flashcard app
RCEComponents with known vulnerabilities
We hacked Anki - 0 day exploit from studying someone elses flashcards
RCEComponents with known vulnerabilities

Built with ❤️ by Shubham Rawat