Shakeel Ali’s Post

ZDI-24-1471: Panda Security Dome PSANHost Link Following Local Privilege Escalation Vulnerability ZDI: Published Advisories 11 November 2024 at 09:00 This vulnerability allows local attackers to escalate privileges on affected installations of Panda Security Dome. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2024-8424.

The Script That Got Away (Almost!) 🔎I recently discovered a reflected XSS (Cross-Site Scripting) vulnerability in a web application while conducting a security review. XSS vulnerabilities can allow attackers to inject malicious scripts into web pages, leading to data theft, session hijacking, or malicious actions executed in the victim’s browser. 🛠️ Every bug counts when you’re securing the web. #EthicalHacking #XSS #BugBountyHunter #WebSecurity

Multiple critical security flaws have been identified in Judge0, an open-source online code execution system. These vulnerabilities could allow attackers to escape the sandbox environment, gain root access, and take complete control of the host machine. The disclosed vulnerabilities include symlink exploitation, patch bypass issues, and a Server-Side Request Forgery (SSRF) that enables remote code execution as root.

AOC 2024 TryHackMe Day#13 - Websockets: It came without buffering! It came without lag! In this lab, I explored WebSocket vulnerabilities, focusing on Message Tampering. Using Burp Suite, I intercepted and modified messages sent to the server. This allowed me to bypass security checks, send unauthorized requests, and manipulate critical data such as usernames, payment amounts, or access levels. Key risks of WebSocket vulnerabilities include: + Unauthorized actions and privilege escalation. + Data manipulation and corruption. + System instability or crashes. Understanding and mitigating such vulnerabilities is critical to maintaining secure and reliable WebSocket implementations.

Two vulnerabilities have been discovered in BIG-IP, which are associated with Insufficient Session Fixation and Expired Pointer Dereference. https://lnkd.in/ezYprr9j

UnFortinate Over the past months, solutions from Fortinet has experienced exploited vulnerabilities. Some bulletins became contentious like the public advisories by Rapid7 because Fortinet was not ready for its fix (even after months of advance notice). Here we are again. The attack targets FortiClient EMS versions 7.0 (7.0.1 through 7.0.10) and 7.2 (7.2.0 through 7.2.2), that enables unauthenticated threat actors to gain remote code execution without need for user interaction. There's still >300 system unpatched and vulnerabl . WHY? @gefura_update #gefura

🚨 [Cyber] SolarWinds Serv-U Information Disclosure Vulnerability (CVE-2024-28995) 👉 What is the Vulnerability?A Directory Traversal Vulnerability in SolarWinds Serv-U software is being actively exploited in the wild. Tracked as CVE-2024-28995, the vulnerability is due to improper validation... #NoHackMe_news #NoHackMe_news_en https://lnkd.in/gBNYdBR3

Trend Micro Search: The Potential Impact of the OpenSSH Vulnerabilities CVE-2024–6387 and CVE-2024-6409: We check the OpenSSH vulnerabilities CVE-2024–6387 and CVE-2024-6409, examining their potential real-world impact and the possibility of exploitation for CVE-2024–6387 in x64 systems. Check it out!

https://zurl.co/qg2m Keep your sensitive data safe with Delphi's comprehensive patch management services. Don't leave vulnerabilities unchecked. #ProtectYourData #PatchManagement #DelphiTech

File Inclusion This room introduces file inclusion vulnerabilities, including Local File Inclusion (LFI), Remote File Inclusion (RFI), and directory traversal.