#Threat_Research 1. RCE via unsafe inline Kramdown options whe | -CyberSecurityTechnologies-

#Threat_Research
1. RCE via unsafe inline Kramdown options when rendering certain Wiki pages
https://hackerone.com/reports/1125425
2. PoC code about the Microsoft Diaghub case sensitivity EoP vulnerability (CVE-2021-28321, CVE-2021-28322, CVE-2021-28313)
https://github.com/irsl/microsoft-diaghub-case-sensitivity-eop-cve
3. The peculiar case of HTML Injection
https://infosecwriteups.com/the-peculiar-case-of-html-injection-d14db8440e3

-CyberSecurityTechnologies-

🧛 7.24K
Technologies

Welcome to -CyberSecurityTechnologies- Channel:. - BlueTeam (APT/OpSec/DFIR). - Offensive Security (RedTeaming/TH/PenTesting). - Reverse Engineering/Malware Analisys (TTPs). - Web Security/DevSecOps. ...

Join
▲ Vote (1)

#Threat_Research 1. RCE via unsafe inline Kramdown options whe | -CyberSecurityTechnologies-

Login