Write-ups
Check The Published Writeups
| WDB | Title | Tags | Programs | Authors | Type | Publication | Added |
|---|---|---|---|---|---|---|---|
| 5107 | Type Juggling and PHP Object Injection, and SQLi, Oh My! | Type juggling PHP Object Injection Insecure deserialization SQL injection | NA | Justin Kennedy (@jstnkndy) | Bug Bounty | 2017-02-07 | 2023-06-13 |
| 5079 | Tales of SugarCRM Security Horrors | PHP Object Injection SQL injection Authentication bypass | SugarCRM | Egidio Romano / EgiX | Bug Bounty | 2017-04-23 | 2023-06-13 |
| 2376 | Pre-Auth RCE in Moodle Part I - PHP Object Injection in Shibboleth | RCE PHP Object Injection | Moodle | Johannes Moritz | Bug Bounty | 2021-07-27 | 2023-06-13 |
| 777 | Exploiting an N-day vBulletin PHP Object Injection Vulnerability | PHP Object Injection Security code review | vBulletin | Egidio Romano / EgiX | Bug Bounty | 2022-11-26 | 2023-06-13 |