| 979 | Enter "Sandbreak" - Vulnerability In vm2 Sandbox Module Enables Remote Code Execution (CVE-2022-36067) |
RCE
Sandbox bypass |
vm2 |
Oxeye (@OxeyeSecurity) |
Bug Bounty | 2022-10-10 | 2023-06-13 |
| 972 | Pwning ManageEngine — From Endpoint to Exploit: A deep dive into CVE-2021–42847 |
Arbitrary file write
XXE
RCE |
Zoho |
Erik Wynter (@WynterErik) |
Bug Bounty | 2022-10-12 | 2023-06-13 |
| 950 | Toner Deaf – Printing your next persistence (Hexacon 2022) |
Path traversal
Arbitrary file write
RCE
Printer hacking |
Lexmark |
Alex Plaskett (@alexjplaskett) |
Bug Bounty | 2022-10-17 | 2023-06-13 |
| 948 | Pwn2Own Miami 2022: ICONICS GENESIS64 Arbitrary Code Execution |
RCE |
ICONICS |
Sector 7 (@sector7_nl) |
Bug Bounty | 2022-10-17 | 2023-06-13 |
| 947 | Analysis of a Remote Code Execution (RCE) Vulnerability in Cobalt Strike 4.7.1 |
RCE
XSS |
HelpSystems |
Rio (@0x09AL) |
Bug Bounty | 2022-10-17 | 2023-06-13 |
| 946 | Guest Blog Post - Memory corruption vulnerabilities in Edge |
Browser hacking
Memory corruption
Use-After-Free
Out-of-bounds Read
Out-of-bounds Write |
Microsoft |
David Erceg (@david_erceg) |
Bug Bounty | 2022-10-17 | 2023-06-13 |
| 945 | CVE 2022–24082, RCE in the PEGA Platform — Discovery, Remediation & Technical Details (Long Live JMX!!!) |
RCE
JMX |
PEGA |
Marcin Wolak |
Bug Bounty | 2022-10-17 | 2023-06-13 |
| 943 | Basic recon to RCE III |
RCE
OS command injection |
NA |
Joshua Martinelle (@J0_mart) |
Bug Bounty | 2022-10-18 | 2023-06-13 |
| 941 | Remote Code Execution in Melis Platform |
RCE
Path traversal
Insecure deserialization
Security code review |
Melis Platform |
Karim El Ouerghemmi |
Bug Bounty | 2022-10-18 | 2023-06-13 |
| 940 | Yet Another Telerik UI Revisit |
Cryptographic issues
RCE |
Progress (Telerik) |
Paul Mueller |
Bug Bounty | 2022-10-19 | 2023-06-13 |
| 936 | CVE-2022-3236: Sophos Firewall User Portal and Web Admin Code Injection |
RCE
Code injection
Security code review |
Sophos |
Guy Lederfein (@glederfein) |
Bug Bounty | 2022-10-19 | 2023-06-13 |
| 935 | Microsoft Office Online Server Remote Code Execution |
SSRF
RCE |
Microsoft |
Manish Tanwar (@IndiShell1046) |
Bug Bounty | 2022-10-19 | 2023-06-13 |
| 931 | A New Attack Surface on MS Exchange Part 4 - ProxyRelay! |
RCE
Privilege escalation |
Microsoft |
Orange Tsai (@orange_8361) |
Bug Bounty | 2022-10-19 | 2023-06-13 |
| 929 | Potential Remote Code Execution Vulnerability Discovered In HSQLDB |
RCE
Security code review |
HSQL Development Group (HSQLDB) |
Code Intelligence (@CI_Fuzz) |
Bug Bounty | 2022-10-19 | 2023-06-13 |
| 922 | Sail away, sail away, sail away |
RCE
Privilege escalation |
NA |
Reino Mostert |
Bug Bounty | 2022-10-21 | 2023-06-13 |
| 918 | Finding Multiple Security Issues on Agorapulse |
Log4shell
RCE
Information disclosure
Broken Access Control
Privilege escalation |
Agorapulse |
Snap Sec (@snap_sec) |
Bug Bounty | 2022-10-24 | 2023-06-13 |
| 913 | Remote Code Execution by Abusing Apache Spark SQL |
SQL injection
RCE |
NA |
Colin McQueen |
Bug Bounty | 2022-10-24 | 2023-06-13 |
| 910 | Eat What You Kill :: Pre-authenticated Remote Code Execution in VMWare NSX Manager |
RCE
Insecure deserialization
Security code review |
VMware |
Sina Kheirkhah (@SinSinology) |
Bug Bounty | 2022-10-25 | 2023-06-13 |
| 895 | Visual Studio Code Jupyter Notebook RCE |
RCE
XSS
Arbitrary file read
Electron |
Microsoft |
Luca Carettoni (@lucacarettoni) |
Bug Bounty | 2022-10-27 | 2023-06-13 |
| 894 | AWS SSRF to Root on production instance — A bug worth 1.75Lacs |
SSRF
RCE
Password reset |
NA |
Avinash Jain (@logicbomb_1) |
Bug Bounty | 2022-10-27 | 2023-06-13 |
| 892 | RCE docker api, but … |
RCE
Docker daemon misconfiguration |
NA |
nanwn |
Bug Bounty | 2022-10-28 | 2023-06-13 |
| 890 | CVE-2022-22241: Juniper SSLVPN / JunOS RCE and Multiple Vulnerabilities |
RCE
Phar deserialization
Reflected XSS
XPATH injection
Path traversal
LFI |
Juniper |
Paulos Yibelo (@PaulosYibelo) |
Bug Bounty | 2022-10-28 | 2023-06-13 |
| 886 | Old RCE worth $3362. |
RCE |
NA |
nanwn |
Bug Bounty | 2022-10-30 | 2023-06-13 |
| 884 | Vulnerabilities In Apache Batik Default Security Controls – SSRF And RCE Through Remote Class Loading |
SSRF
RCE |
Apache Batik |
Piotr Bazydło (@chudypb) |
Bug Bounty | 2022-10-31 | 2023-06-13 |
| 874 | Chaining Multiple Vulnerabilities Leads to Remote Code Execution (RCE) on One of the Payment Service Companies. |
Exposed registration page
Exposed Jenkins instance
Weak credentials
RCE |
NA |
Rohit Soni (@streetofhacker) |
Bug Bounty | 2022-11-02 | 2023-06-13 |
