Skip to the content
Hacktive Security Blog
  • Pin Posts
  • Home
  • Application Security

Application Security

0
0
Intigriti XSS Challenge – December 2021
Application Security

Intigriti XSS Challenge – December 2021

Michele Mariani
December 27, 2021March 11, 2022
The approach to this challenge was completely different from the past two months, as the vulnerable component was on the backend, forcing us to approach...
Read More
0
2
Intigriti November XSS Challenge
Application Security

Intigriti November XSS Challenge

Michele Mariani
November 22, 2021March 11, 2022
The bug bounty program Intigriti hosts an XSS challenge every month. This time, the challenge was about bypassing CSP by reloading a VueJS instance, getting...
Read More
0
3
Application Security

CVE-2021-43136 – FormaLMS – The evil default value that leads to Authentication Bypass

Cristian Giustini
October 5, 2021January 1, 2022
Preface As part of our recent research activity, we stumbled upon FormaLMS. The project is an open source Learning Management System built by forma.association and...
Read More
0
0
SA-CONTRIB-2021-036 NotSoSAML – Privilege Escalation via XML Signature Wrapping on MiniorangeSAML Drupal Plugin
Application Security

SA-CONTRIB-2021-036 NotSoSAML – Privilege Escalation via XML Signature Wrapping on MiniorangeSAML Drupal Plugin

Cristian Giustini
July 9, 2021January 18, 2022
This is a brief story about how we found a vulnerability on a drupal plugin that, when not configured correctly, could allow an authenticated user...
Read More
0
0
CVE-2020-35749 – Authenticated Directory Traversal Simple Job Board WordPress plugin version < 2.9.3
Application Security

CVE-2020-35749 – Authenticated Directory Traversal Simple Job Board WordPress plugin version < 2.9.3

Arcangelo Saracino
January 18, 2021June 27, 2021
During our research activities we discovered an authenticated local inclusion in the Simple Job Board Wordpress plugin. The Simple Job Board Wordpress plugin has reached...
Read More
0
1
ownCloud Multiple Vulnerabilities
Application Security

ownCloud Multiple Vulnerabilities

Alessandro Groppo
July 27, 2020June 27, 2021
During one of our research activities we discovered several flaws in the ownCloud product.ownCloud is a popular open-source cloud service similar to Google Drive and the last...
Read More
0
0
Matrix Synapse 1.12.3 – SSRF and Cache poisoning
Application Security

Matrix Synapse 1.12.3 – SSRF and Cache poisoning

Cristian Giustini
June 14, 2020July 24, 2021
tl;dr The Matrix Synapse servers have been found affected by a security issue about the lack of a validation system for "Server-to-server" API leading to SSRF and...
Read More
0
0
Multiple SSRF on Vanilla Moodle Installations
Application Security

Multiple SSRF on Vanilla Moodle Installations

Alessandro Groppo
April 14, 2020June 21, 2021
During the time dedicated to research we found 2 Server-Side Request Forgery on Moodle. The first one is a Blind SSRF already discovered in 2018 and tracked...
Read More
0
0
A true story of mobile device geolocation
Application Security

A true story of mobile device geolocation

Alessandro Groppo
December 4, 2019June 21, 2021
TL;DR During the monthly research activity, in accordance with the relative Respnsible Disclosure program, we found and went in depth with an interesting security issue...
Read More
0
3
Rusty Joomla RCE
Application Security

Rusty Joomla RCE

Alessandro Groppo
October 3, 2019June 21, 2021
Introduction During one of our research activities, we discovered an undisclosed PHP Object Injection on Joomla CMS from the release 3.0.0 to the 3.4.6 (releases from 2012 to December...
Read More

Recent Post

CVE-2022-2602: DirtyCred File Exploitation applied on an io_uring UAF

Lock Picking – Part 1

How an Akamai misconfiguration earned us USD 46.000

Workshop: Linux Kernel Exploitation 101 – Part 2

Workshop: Linux Kernel Exploitation 101 – Part 1

Top Category

Application Security

Mobile

Exploitation

  • Pin Posts
Copyright © 2023 Hacktive Security Blog. All rights reserved.
Theme: Masonry Grid By Themeinwp. Powered by WordPress.
To the Top ↑ Up ↑