Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
1754SSD Advisory – NETGEAR DGND3700v2 PreAuth Root Access Authentication bypass OS command injection RCE Netgear - Bug Bounty2022-03-092023-06-13
1698Finding bugs to trigger Unauthenticated Command Injection in a NETGEAR router (PSV-2022–0044) XSS Arbitrary file read Authentication bypass OS command injection RCE Netgear stypr (@stereotype32) Bug Bounty2022-03-252023-06-13
1677Pwning a Cisco RV340 with a 4 bug chain exploit Local Privilege Escalation OS command injection RCE Session management issue Cisco Liv (@terminatorLM) Bug Bounty2022-04-012023-06-13
1496Multiple vulnerabilities in Zyxel zysh OS command injection Memory corruption Zyxel Marco Ivaldi / Raptor (@0xdea) Bug Bounty2022-06-072023-06-13
1372Hacking on a Private Program (Salseforce crm) RCE OS command injection NA Maruf Hosan (@thinkermaruff) Bug Bounty2022-07-132023-06-13
1314CVE-2022–36446 — Webmin 1.996 — Remote Code Execution (RCE — Authenticated) During Install New Packages RCE OS command injection Webmin Emir Polat (@devilsgrins) Bug Bounty2022-07-262023-06-13
1293My Second CVE (CVE-2022-31855) OS command injection Local Privilege Escalation RStudio y0ung_dst (@Y0ung_MA) Bug Bounty2022-07-302023-06-13
1279QNAP Poisoned XML Command Injection (Silently Patched) OS command injection RCE QNAP Jake Baines (@Junior_Baines) Bug Bounty2022-08-042023-06-13
1263Advisory: Cisco Small Business RV Series Routers Web Filter Database Update Command Injection Vulnerability OS command injection RCE Cisco Quentin Kaiser (@QKaiser) Bug Bounty2022-08-092023-06-13
1257Google Cloud Shell - Command Injection OS command injection RCE Cloud Google Bugra Eskici (@bugraeskici) Bug Bounty2022-08-102023-06-13
1251Mining Node.js Vulnerabilities via Object Dependence Graph and Query RCE OS command injection Prototype pollution Path traversal NA Song Li Bug Bounty2022-08-102023-06-13
1249Rapid7 Discovered Vulnerabilities in Cisco ASA, ASDM, and FirePOWER Services Software RCE OS command injection Local Privilege Escalation MiTM Cisco Jake Baines (@Junior_Baines) Bug Bounty2022-08-112023-06-13
1246The cloud has an isolation problem: PostgreSQL vulnerabilities affect multiple cloud vendors Privilege escalation Cross-tenant vulnerability OS command injection Local Privilege Escalation Cloud Google Microsoft Aiven Shir Tamari (@shirtamari) Bug Bounty2022-08-112023-06-13
1195Blind command injection RCE OS command injection NA Bartłomiej Bergier (@_bergee_) Bug Bounty2022-08-212023-06-13
1176Command Injection in the GitHub Pages Build Pipeline RCE OS command injection GitHub Joren Vrancken Bug Bounty2022-08-252023-06-13
1163Out-Of-Bond Remote code Execution(RCE) on De Nederlandsche Bank N.V. with burp-suite collaborator OS command injection RCE De Nederlandsche Bank Santosh Kumar Sha (@killmongar1996) Bug Bounty2022-08-282023-06-13
1080Security Advisory: NETGEAR Routers FunJSQ Vulnerabilities OS command injection RCE MiTM Netgear Quentin Kaiser (@QKaiser) Bug Bounty2022-09-142023-06-13
1079Breaking Bitbucket: Pre Auth Remote Command Execution (CVE-2022-36804) RCE OS command injection Atlassian Maxwell Garrett (@TheGrandPew) Bug Bounty2022-09-142023-06-13
1012How Scanning Your Projects for Security Issues Can Lead to Remote Code Execution RCE OS command injection Snyk Ron Masas (@RonMasas) Bug Bounty2022-09-292023-06-13
943Basic recon to RCE III RCE OS command injection NA Joshua Martinelle (@J0_mart) Bug Bounty2022-10-182023-06-13
939Vulnerabilities in Tenda%27s W15Ev2 AC1200 Router OS command injection Buffer Overflow Memory corruption Stored XSS Authorization flaw Information disclosure Tenda Olivier Laflamme (@olivier_boschko) Bug Bounty2022-10-192023-06-13
906GL.iNET GL-MT300N-V2 Router Vulnerabilities and Hardware Teardown OS command injection Arbitrary file read Information disclosure Account takeover Stored XSS Lack of rate limiting Weak credentials Password policy bypass GL.iNet Olivier Laflamme (@olivier_boschko) Bug Bounty2022-10-262023-06-13
844Unit 42 Finds Three Vulnerabilities in OpenLiteSpeed Web Server RCE OS command injection Path traversal Local Privilege Escalation LiteSpeed Artur Avetisyan (@3v1LMonk3y) Bug Bounty2022-11-102023-06-13
781Legally hacking a Government Satellite? Missing authentication OS command injection RCE NA RiotSecTeam (@RiotSecTeam) Bug Bounty2022-11-242023-06-13
779CVE-2022–43781 OS command injection RCE Atlassian Petrus Viet (@VietPetrus) Bug Bounty2022-11-252023-06-13