Secure77

Techblog and Security

NTLM Attack in Metabase CVE-2022-24853

Metabase GeoJSON API Endpoint Back in September 2021, Metabase released a security announcement regarding its GeoJSON API endpoint: GeoJSON URL validation can expose server files and environment variables to unauthorized users We’ve discovered a potential security issue with the custom GeoJSON map (admin->settings->maps->custom maps->add a map) support and potential local file inclusion (including environment variables).

Continue Reading „NTLM Attack in Metabase CVE-2022-24853“

Tags:

Posted: 14. Februar 2022 by

Leave a Comment

PHP Voting System – Unauthenticated Remote Code Execution

Today i just found another exploit in the PHP Voting System. The file /admin/candidates_add.php is vulnerable against unauthenticated file upload which can use for RCE. Exploit DB entry: https://www.exploit-db.com/exploits/49846 Vulnerable file candidates_add.php You just need to send a POST with multipart/form-data so you can upload any file you wish. There is no cookie or file

Continue Reading „PHP Voting System – Unauthenticated Remote Code Execution“

Tags: | |

Posted: 7. Mai 2021 by

Leave a Comment

PHP Voting System – Admin Authentication Bypass (SQLI)

Today i found a new exploit in the PHP Voting System. Exploit-DB entry: https://www.exploit-db.com/exploits/49843 The /admin/login.php is vulnerable against SQL injections and so you can bypass the admin authentication. login.php As you can see the first check if($query->num_rows < 1)against the username is only checking the number of rows. With the following statement you always

Continue Reading „PHP Voting System – Admin Authentication Bypass (SQLI)“

Tags: | |

Posted: 6. Mai 2021 by

Leave a Comment

Copyright © 2026 · All Rights Reserved · Secure77 · Theme: Portfolio Lite by Organic Themes