APT – Telegram

Forwarded from Ralf Hacker Channel (Ralf Hacker)

CVE-2024-30088: Windows LPE

PATCHED: June 11, 2024

https://github.com/tykawaii98/CVE-2024-30088

P.S. Протестил на Win11, работает

#git #exploit #lpe #pentest #redteam

❤‍🔥7🔥1

3.86K views08:35

APT

👩‍💻

Nagios XI — RCE

Nagios XI 2024R1.01 has a vulnerability in the monitoringwizard.php component, allowing authenticated SQL injection (CVE-2024-24401) that lets attackers create an admin account and remote code execution.

🔗 Source:
https://github.com/MAWK0235/CVE-2024-24401

#nagios #sql #rce #privesc #poc #exploit

Please open Telegram to view this post

VIEW IN TELEGRAM

🔥12👍2

25.6K views08:35

APT

Forwarded from Ralf Hacker Channel (Ralf Hacker)

CVE-2024-43468: ConfigMgr/SCCM 2403 Unauth SQLi to RCE

PATCHED: Oct 8, 2024

Exploit: https://github.com/synacktiv/CVE-2024-43468

Blog: https://www.synacktiv.com/advisories/microsoft-configuration-manager-configmgr-2403-unauthenticated-sql-injections

#git #exploit #ad #rce #sccm #pentest #redteam

GitHub

GitHub - synacktiv/CVE-2024-43468

Contribute to synacktiv/CVE-2024-43468 development by creating an account on GitHub.

🔥5👍2❤1

7.08K views22:16

APT

This media is not supported in your browser

VIEW IN TELEGRAM

🩸 CitrixBleed 2 — Citrix NetScaler Memory Leak (CVE-2025-5777)

Critical memory leak vulnerability in Citrix NetScaler ADC/Gateway. Sending malformed POST request with login parameter without value causes server to return ~127 bytes of uninitialized stack memory, including session tokens, enabling MFA bypass and active session hijacking.

🔗 Research:
https://horizon3.ai/attack-research/attack-blogs/cve-2025-5777-citrixbleed-2-write-up-maybe/

🔗 Source:
https://github.com/win3zz/CVE-2025-5777

#citrix #netscaler #memoryleak #exploit

👍13❤8🔥7

28.8K viewsedited 15:01

About

Blog

Apps

Platform