Outer Web | Explore

Explore >> Select a destination

You are here		buer.haus H1-5411 CTF Write-up by erbbysam and ziot \| Brett Buerhaus
\|	\|	positive.security From XSS to RCE (dompdf 0day) \| Positive Security	2.7 parsecs away Travel
\|	\|	Using a still unpatched vulnerability in the PHP library dompdf (used for rendering PDFs from HTML), we achieved RCE on a web server with merely a reflected XSS vulnerability as entry point.	2.7 parsecs away Travel
\|	\|	spawnzii.github.io How we have pwned Root-Me in 2022 :: SpawnZii	4.0 parsecs away Travel
\|	\|	Introduction Hello, I'm currently a student at ESNA and I'm passionate about web application security. This article describes the discovery of several critical vulnerabilities in the SPIP CMS and Root-Me. With a friend (cc Abyss Watcher) we decided to search for vulnerabilities on the SPIP/Root-Me. From the first days, we managed to find some bugs, XSS, CSRF and later we will discover a RCE. Environment Of course we did not our research directly on root me.	4.0 parsecs away Travel
\|	\|	blog.kotowicz.net How to upload arbitrary file contents cross-domain	3.7 parsecs away Travel
\|	\|	A blog on security, malware, cryptography, pentesting, javascript, php and whatnots	3.7 parsecs away Travel
\|	\|	machevalia.blog Remote Code Execution in .tgz File Upload - Machevalia	22.6 parsecs away Travel
\|		[AI summary] The article details a remote code execution vulnerability in a .tgz file upload feature, where the server's parsing logic allowed an attacker to bypass filters by crafting a malicious archive with a web shell.	22.6 parsecs away Travel