(CVE-2023-2110) Obsidian Local File Disclosure Summary:ProductObsidianVendorObsidianSeverityHighAffected VersionsObsidian < 1.2.... 2023-8-19 08:0:0 | 阅读: 39 | 收藏 | Advisories on STAR Labs - starlabs.sg webpage malicious attacker payload windows

(CVE-2023-2317) Typora DOM-Based Cross-site Scripting leading to Remote Code Execution Summary:ProductTyporaVendorTyporaSeverityHighAffected VersionsTypora for Windows/... 2023-8-19 08:0:0 | 阅读: 26 | 收藏 | Advisories on STAR Labs - starlabs.sg updater payload malicious webpage windows

(CVE-2023-2318) MarkText DOM-Based Cross-site Scripting leading to Remote Code Execution Summary:ProductMarkTextVendorMarkTextSeverityHighAffected VersionsMarkText <= 0.1... 2023-8-19 08:0:0 | 阅读: 27 | 收藏 | Advisories on STAR Labs - starlabs.sg marktext webpage windows payload malicious

Ghosts of the Past: Classic PHP RCE Bugs in Trend Micro Enterprise Offerings 好的，我现在需要帮用户总结一篇关于PHP漏洞的文章。用户的要求是用中文总结，控制在100字以内，并且不需要特定的开头，直接写描述。 首先，我看看文章内容。这篇文章是在HITCON CMT 2023会议上发表的，主题是经典PHP漏洞在现代企业安全产品中的再现。提到的漏洞类型包括反序列化、文件包含和命令注入。研究对象是趋势科技的企业产品线，还有GitHub上的幻灯片。 接下来，我需要提取关键信息：会议名称、时间地点、研究发现、涉及的漏洞类型、案例来源以及幻灯片的位置。然后把这些信息浓缩到100字以内。 可能会遇到的问题是如何简洁地表达这些内容而不遗漏重要点。比如，“经典PHP漏洞”可以简化为“传统PHP漏洞”，“企业安全产品”可以保留原样。案例来源用“趋势科技”代替全名更简洁。 最后，确保语言流畅，没有语法错误，并且符合用户的要求。 </think> HITCON CMT 2023会议上探讨了传统PHP漏洞（如反序列化、文件包含、命令注入）在现代企业安全产品中的持续存在问题，以趋势科技的企业产品为例进行分析，并提供了相关案例研究和幻灯片资源。... 2023-8-18 00:0:0 | 阅读: 2 | 收藏 | Publications on STAR Labs - starlabs.sg slides php security hitcon cmt

What You See IS NOT What You Get: Pwning Electron-based Markdown Note-taking Apps 嗯，用户让我总结一下这篇文章的内容，控制在100字以内，而且不需要用“文章内容总结”或者“这篇文章”这样的开头。直接写描述就行。好的，我先看看文章内容。 文章标题是关于Markdown渲染在Electron应用中的安全问题。作者是李建涛，发表于2023年8月18日。内容提到在HITCON CMT 2023会议上的一次演讲，探讨了如何利用Markdown渲染管道中的解析器漏洞和Electron的Node.js集成来实现代码执行。 首先，我需要提取关键点：Markdown渲染、Electron应用、攻击面、代码执行、HITCON会议、演讲内容、GitHub上的幻灯片。 接下来，我要把这些点浓缩成一句话，不超过100字。要确保涵盖主要技术点和演讲信息。 可能的结构：在HITCON CMT 2023会议上，演讲探讨了Markdown渲染在Electron应用中的安全漏洞，如何利用这些漏洞实现代码执行，并展示了幻灯片在GitHub上。 检查字数：确保不超过限制，并且直接描述内容，不使用开头词。 最终总结应该是简洁明了的。 </think> Markdown在Electron应用中的渲染存在安全风险，可被滥用以实现代码执行。该研究通过分析解析器漏洞和Electron的Node.js集成，在HITCON CMT 2023会议上展示相关攻击链，并提供幻灯片供参考。... 2023-8-18 00:0:0 | 阅读: 4 | 收藏 | Publications on STAR Labs - starlabs.sg hitcon cmt slides rendering pipelines

Under The Hood - Disassembling of IKEA-Sonos Symfonisk Speaker Lamp We are excited to embark on a series of teardowns to explore the inner workings of various devices.... 2023-8-1 08:0:0 | 阅读: 29 | 收藏 | Blogs on STAR Labs - starlabs.sg circuit voltage symfonisk flyback connector

Under The Hood - Disassembling of IKEA-Sonos Symfonisk Speaker Lamp We are excited to embark on a series of teardowns to explore the inner workings of various de... 2023-8-1 00:0:0 | 阅读: 3 | 收藏 | Blogs on STAR Labs - starlabs.sg circuit voltage symfonisk flyback connector

A new method for container escape using file-based DirtyCred Recently, I was trying out various exploitation techniques against a Linux kernel vulnerability, CVE... 2023-7-25 08:0:0 | 阅读: 17 | 收藏 | Blogs on STAR Labs - starlabs.sg modprobe aio iocb refcount dirtycred

prctl anon_vma_name: An Amusing Linux Kernel Heap Spray TLDRprctl PR_SET_VMA (PR_SET_VMA_ANON_NAME) can be used as a (possibly new!) heap spray method targ... 2023-7-25 08:0:0 | 阅读: 22 | 收藏 | Blogs on STAR Labs - starlabs.sg anon vma prctl kref kmalloc

prctl anon_vma_name: An Amusing Linux Kernel Heap Spray TLDRprctl PR_SET_VMA (PR_SET_VMA_ANON_NAME) can be used as a (possibly new!) heap spray meth... 2023-7-25 00:0:0 | 阅读: 2 | 收藏 | Blogs on STAR Labs - starlabs.sg anon vma prctl kref kmalloc

(CVE-2023-3513) RazerCentralService unsafe deserialization Escalation of Privilege Vulnerability SummaryProductRazer CentralServiceVendorRazerSeverityHigh - Adversaries may exploit s... 2023-7-14 08:0:0 | 阅读: 24 | 收藏 | Advisories on STAR Labs - starlabs.sg razer software rzr

(CVE-2023-3514) RazerCentralSerivce unsafe NamedPipe permission Escalation of Privilege Vulnerability SummaryProductRazer CentralServiceVendorRazerSeverityHigh - Adversaries may exploit s... 2023-7-14 08:0:0 | 阅读: 28 | 收藏 | Advisories on STAR Labs - starlabs.sg razer rid

Breaking the Code - Exploiting and Examining CVE-2023-1829 in cls_tcindex Classifier Vulnerability BackgroundThe discovery and analysis of vulnerabilities is a critical aspect of cybersecurity resea... 2023-6-19 08:0:0 | 阅读: 17 | 收藏 | Blogs on STAR Labs - starlabs.sg netlink exts tcindex rtm tcf

The Old, The New and The Bypass - One-click/Open-redirect to own Samsung S22 at Pwn2Own 2022 TLDR;We began our work on Samsung immediately after the release of the Pwn2Own Toronto 2022 target... 2023-6-14 08:0:0 | 阅读: 15 | 收藏 | Blogs on STAR Labs - starlabs.sg samsung deeplink samsungapps p0

Unearthing Vulnerabilities in the Apple Ecosystem: The Art of KidFuzzerV2.0 Publication May 19, 2023 By Pan Zhenpeng... 2023-5-19 00:0:0 | 阅读: 3 | 收藏 | Publications on STAR Labs - starlabs.sg slides kidfuzzerv2 uncovered fuzzer

Microsoft Exchange Powershell Remoting Deserialization leading to RCE (CVE-2023-21707) IntroductionWhile analyzing CVE-2022-41082, also known as ProxyNotShell, we discovered this vulnera... 2023-4-28 08:0:0 | 阅读: 23 | 收藏 | Blogs on STAR Labs - starlabs.sg powershell exchange payload

(CVE-2023-2017) Shopware 6 Server-side Template Injection (SSTI) via Twig Security Extension Summary:ProductShopwareVendorShopware AGSeverityHigh - Users with login access to Sho... 2023-4-17 08:0:0 | 阅读: 31 | 收藏 | Advisories on STAR Labs - starlabs.sg shopware arrow php twig xa9

CS-Cart PDF Plugin Unauthenticated Command Injection SummaryA command injection vulnerability exists in CS-Cart’s HTML to PDF converter (https://github.... 2023-3-3 08:0:0 | 阅读: 15 | 收藏 | Blogs on STAR Labs - starlabs.sg converter php cscart github injection

Microsoft Azure Account Takeover via DOM-based XSS in Cosmos DB Explorer Upon finding the vulnerability, our team member, Ngo Wei Lin (@Creastery), immediately reported it t... 2023-2-24 08:0:0 | 阅读: 22 | 收藏 | Blogs on STAR Labs - starlabs.sg cosmos heatmap attacker

STAR LABS SG PTE. LTD. has been authorized by the CVE Program as a CVE Numbering Authority (CNA) STAR LABS SG PTE. LTD. (STAR Labs) announced today that it has become a CVE Numbering Authority (CNA... 2023-2-22 08:0:0 | 阅读: 14 | 收藏 | Blogs on STAR Labs - starlabs.sg security cna publishing