[MyBB] BBCode XSS to Admin SQL Injection to Code Injection Chain
BBCode XSS chained with an admin panel SQL injection for potential for code execution.
Vulnerabilities tagged "testing"
Undocumented API allows CloudTrail bypass
Cool, yet simple finding from the DataDog security team where calls to an undocument `iamadmin` service would also not appear in CloudTrail logs but could reproduce the functionality of several standard IAM service methods.
[Hyundai] Remotely control the locks, engine, horn, headlights, and trunk of vehicles made after 2012.
An email normalization issue allowing for remote control of a vehicle.
Multiple memory corruptions in MS Edge
Multiple memory corruptions in Microsoft Edge browser, there are several issues here but they all generally can be summed up as "self-corruptions".Its things like a use-after-free by opening a dialog, closing the backing page that spawned the dialog, and then closing the dialog triggering a callback that no longer exists...
Scoreboard Hacking Part 2 - Getting the AES Key
Great series of posts covering the authors research progress and eventual owning of a wireless scoreboard system.Unlike a lot of the attacks we cover, this had more of a hardware and even radio signal focus...
Breaking Bitbucket: Pre Auth Remote Command Execution [CVE-2022-36804]
Two argument injections that were found in Bitbucket server, though only one of them was exploitable.The first was in the `/rest/api/latest/projects/~USER/repos/repo1/browse` endpoint, where an `at` parameter could be provided...