Send()-ing Myself Belated Christmas Gifts: GitHub.com's Environment Variables & GHES Shell Research April 15, 2024 By Ngo Wei Lin 2 min read... 2024-4-15 00:0:0 | 阅读: 2 | 收藏 | Blogs on STAR Labs - starlabs.sg github ghes repository leaking marshal

Route to Safety: Navigating Router Pitfalls IntroductionWi-Fi routers have always been an attractive target for attackers. When taken over, an... 2024-3-18 08:0:0 | 阅读: 15 | 收藏 | Blogs on STAR Labs - starlabs.sg injection strncpy routers overflow

Route to Safety: Navigating Router Pitfalls IntroductionWi-Fi routers have always been an attractive target for attackers. When taken ov... 2024-3-18 00:0:0 | 阅读: 3 | 收藏 | Blogs on STAR Labs - starlabs.sg injection strncpy routers overflow

(CVE-2024-27791) Apple PMP Firmware Out-of-Bounds Write via ApplePMPv2 writeDashboard Advisory January 22, 2024 By Pan Zhenpeng 3 min read... 2024-1-22 00:0:0 | 阅读: 4 | 收藏 | Advisories on STAR Labs - starlabs.sg pmp nub applepmpv2 iop memory

(CVE-2023-4226) Chamilo LMS Work Ajax File Upload Functionality Remote Code Execution SummaryProductChamiloVendorChamiloSeverityHigh - Adversaries may exploit software vul... 2023-11-28 08:0:0 | 阅读: 27 | 收藏 | Advisories on STAR Labs - starlabs.sg php chamilo htaccess tmpfile

(CVE-2023-3368) Chamilo LMS Unauthenticated Command Injection SummaryProductChamiloVendorChamiloSeverityHigh - Adversaries may exploit software vul... 2023-11-28 08:0:0 | 阅读: 14 | 收藏 | Advisories on STAR Labs - starlabs.sg webservices php security chamilo xsi

(CVE-2023-3533) Chamilo LMS Unauthenticated Remote Code Execution via Arbitrary File Write SummaryProductChamiloVendorChamiloSeverityHigh - Adversaries may exploit software vul... 2023-11-28 08:0:0 | 阅读: 24 | 收藏 | Advisories on STAR Labs - starlabs.sg php chamilo payload webservices security

(CVE-2023-3545) Chamilo LMS Htaccess File Upload Security Bypass SummaryProductChamiloVendorChamiloSeverityHigh - Adversaries may exploit software vul... 2023-11-28 08:0:0 | 阅读: 46 | 收藏 | Advisories on STAR Labs - starlabs.sg htaccess php chamilo remote windows

(CVE-2023-4220) Chamilo LMS Unauthenticated Big Upload File Remote Code Execution SummaryProductChamiloVendorChamiloSeverityHigh - Adversaries may exploit software vul... 2023-11-28 08:0:0 | 阅读: 26 | 收藏 | Advisories on STAR Labs - starlabs.sg bigupload php chamilo tempname

(CVE-2023-4221) Chamilo LMS Learning Path PPT2LP OpenofficePresentation Command Injection SummaryProductChamiloVendorChamiloSeverityHigh - Adversaries may exploit software vul... 2023-11-28 08:0:0 | 阅读: 20 | 收藏 | Advisories on STAR Labs - starlabs.sg php lp injection ppt2lp chamilo

(CVE-2023-4222) Chamilo LMS Learning Path PPT2LP OpenofficeTextDocument Command Injection SummaryProductChamiloVendorChamiloSeverityHigh - Adversaries may exploit software vul... 2023-11-28 08:0:0 | 阅读: 20 | 收藏 | Advisories on STAR Labs - starlabs.sg php lp injection chamilo woogie

(CVE-2023-4223) Chamilo LMS Document Ajax File Upload Functionality Remote Code Execution SummaryProductChamiloVendorChamiloSeverityHigh - Adversaries may exploit software vul... 2023-11-28 08:0:0 | 阅读: 22 | 收藏 | Advisories on STAR Labs - starlabs.sg php chamilo htaccess learner

(CVE-2023-4224) Chamilo LMS Dropbox Ajax File Upload Functionality Remote Code Execution SummaryProductChamiloVendorChamiloSeverityHigh - Adversaries may exploit software vul... 2023-11-28 08:0:0 | 阅读: 36 | 收藏 | Advisories on STAR Labs - starlabs.sg php chamilo dropbox htaccess

(CVE-2023-4225) Chamilo LMS Exercise Ajax File Upload Functionality Remote Code Execution SummaryProductChamiloVendorChamiloSeverityHigh - Adversaries may exploit software vul... 2023-11-28 08:0:0 | 阅读: 31 | 收藏 | Advisories on STAR Labs - starlabs.sg php chamilo htaccess attacker

Exploitation of a kernel pool overflow from a restrictive chunk size (CVE-2021-31969) IntroductionThe prevalence of memory corruption bugs persists, posing a persistent challenge for ex... 2023-11-24 08:0:0 | 阅读: 15 | 收藏 | Blogs on STAR Labs - starlabs.sg b0 etwr alin overflow memory

(CVE-2023-1713) Bitrix24 Remote Command Execution (RCE) via Insecure Temporary File Creation SummaryProductBitrix24VendorBitrix24SeverityHighAffected VersionsBitrix24 22.0.30... 2023-11-1 08:0:0 | 阅读: 41 | 收藏 | Advisories on STAR Labs - starlabs.sg htaccess attacker bitrix sessid php

(CVE-2023-1714) Bitrix24 Remote Command Execution (RCE) via Unsafe Variable Extraction Summary:ProductBitrix24VendorBitrix24SeverityHighAffected VersionsBitrix24 22.0.3... 2023-11-1 08:0:0 | 阅读: 30 | 收藏 | Advisories on STAR Labs - starlabs.sg bitrix php sessid attacker

(CVE-2023-1715 & CVE-2023-1716) Bitrix24 Stored Cross-Site Scripting (XSS) via Improper Input Neutralization on Invoice Edit Page Summary:ProductBitrix24VendorBitrix24SeverityCriticalAffected VersionsBitrix24 22... 2023-11-1 08:0:0 | 阅读: 37 | 收藏 | Advisories on STAR Labs - starlabs.sg invoice recur bitrix sanitizer sessid

(CVE-2023-1717) Bitrix24 Cross-Site Scripting (XSS) via Client-side Prototype Pollution Summary:ProductBitrix24VendorBitrix24SeverityCriticalAffected VersionsBitrix24 22... 2023-11-1 08:0:0 | 阅读: 20 | 收藏 | Advisories on STAR Labs - starlabs.sg bx bitrix bitrix24 presetdata attacker

(CVE-2023-1718) Bitrix24 Denial-of-Service (DoS) via Improper File Stream Access Summary:ProductBitrix24VendorBitrix24SeverityHighAffected VersionsBitrix24 22.0.3... 2023-11-1 08:0:0 | 阅读: 24 | 收藏 | Advisories on STAR Labs - starlabs.sg php bxu bitrix24 cid blah