π©βπ»IW Weekly #70: NFT Bridge Vulnerability, CVE-2023-3519 Deep Analysis, RCE in Huawei Theme Manager, Preauth RCE in Metabase, Chaining Bugs for Session Hijack and many more..
The team at @assetnote unveils a game-changer:
0x01
π©βπ»IW Weekly #69: OpenSSH RCE, Xamarin Applications Reverse Engineering, Puzzled XSS, CVE-2023-3519 analysis, XSS and CORS bypass and many more..
@assetnote's comprehensive analysis delves into CVE
Analysis of CVE-2023-3519 in Citrix ADC and NetScaler Gateway (Part 2)
In our last post we uncovered a vulnerability inside Citrix ADC and NetScaler Gateway that was in the patch fix for CVE-2023-3519. It seems that this vulnerability, while also critical, is not the...
Chaining our way to Pre-Auth RCE in Metabase (CVE-2023-38646)
Metabase is an open source business intelligence tool that lets you create charts and dashboards using data from a variety of databases and data sources. Itβs a popular project, with over 33k stars...
Analysis of CVE-2023-3519 in Citrix ADC and NetScaler Gateway
Update: we have discovered the endpoint being used by threat actors for CVE-2023-3519 and you can read Part 2 of this blog post here. We have been notified that the patches from Ci
Advisory: Metabase Pre-Auth RCE (CVE-2023-38646)
Summary An unauthenticated attacker can obtain the setup token for an instance and use it to achieve remote code execution via an endpoint that allows you to validate a H2 database connection. When...
Bug Bytes #208 β Burp gets an update, Sharefile gets a CVE and JavaScript files get analysed
Bug Bytes is a weekly newsletter curated by members of the bug bounty community. The second series is curated by InsiderPhD. Every week, she keeps us up to date with a comprehensive list of write-u...
π©βπ»IW Weekly #68: Account Takeover using Custom OTP, CVE-2023-36934, Investigating EC2 , XSS in hidden inputs , macOS user's real name brute-forced with mDNS and many more..
Read how @FingerprintJs shares their finding which reveals
Exploiting XSS in hidden inputs and meta tags
In this post we are going to show how you can (ab)use the new HTML popup functionality in Chrome to exploit XSS in meta tags and hidden inputs. It all started when I noticed the new popover behaviour
Bug Bytes #207 -IIS, LLMs and iOS
Bug Bytes is a weekly newsletter curated by members of the bug bounty community. The second series is curated by InsiderPhD. Every week, she keeps us up to date with a comprehensive list of write-u...