Back to directory
WRITEUP #992

Partial File Read in phpList <= 3.6.12 (CVE-2023-35834)

AI / LLMArbitrary file readPHP filter chainSecurity code review
byVincent Herbulot
Program
phpList
Published
Jul 4, 2023
Added to HackDex
Jul 4, 2023
Read Full Writeuphttps://www.synacktiv.com/sites/default/files/2023-07/synacktiv-phplist-partial-file-read.pdf
RELATED WRITEUPS
Studying 0days: How we hacked Anki, the world's most popular flashcard app
RCEComponents with known vulnerabilities
We hacked Anki - 0 day exploit from studying someone elses flashcards
RCEComponents with known vulnerabilities
CVE-2024-29511 – Abusing Ghostscript’s OCR device
OtherArbitrary file read
Getting code execution on Veeam through CVE-2023-27532
RCEInsecure deserialization
Unmasking Harmful Content in a Medical Chatbot: A Red Team Perspective
AI / LLMAI

Built with ❤️ by Shubham Rawat