Advisories
Operating System
Application Security
Network
Tools
Article Series
About Us

Tag: php

Unexpected Journey #7 – GravCMS Unauthenticated Arbitrary YAML Write/Update leads to Code Execution (CVE-2021-21425)

March 19, 2021April 9, 2021 Mehmet Ince Leave a comment

It has been a while since I haven’t published a post on our beloved blog. Today I would like to share technical details and POC for a pretty funny vulnerability that I’ve found at GravCMS.

As I’ve been saying since 2015, my pentest team and I love to chase after 0days during penetration test engagements. This time we come across a GravCMS during the external OSINT process.

Search for:

PRODAFT Cyber Intelligence and Cyber Security Services

Latest Comments

Ege Balci on Art of Anti Detection 3 – Shellcode Alchemy
Chase Run Taylor on Art of Anti Detection 1 – Introduction to AV & Detection Techniques
Mehmet İnce on Unexpected Journey #4 – Escaping from Restricted Shell and Gaining Root Access to SolarWinds Log & Event Manager (SIEM) Product
0x00 on Unexpected Journey #4 – Escaping from Restricted Shell and Gaining Root Access to SolarWinds Log & Event Manager (SIEM) Product
Mehmet İnce on Unexpected Journey #4 – Escaping from Restricted Shell and Gaining Root Access to SolarWinds Log & Event Manager (SIEM) Product

Awarded Top 15 Pentest Blog

INVICTUS Cyber Security & Intelligence Services | Theme by Colorlib Powered by WordPress