CODE WHITE - FINEST HACKING
Intelligence Driven Security
Initial Assessment
Security Intelligence Service
About us
PUBLIC VULNERABILITY LIST
UnknownTypeResolver Insecure Type Resolution in Report Server
UnknownTypeResolver Insecure Type Resolution in Reporting
PreAuth Insecure Deserialization in Dynamics 365 Business Central
...
CAREERS
Challenge
Pentester / Redteamer
Threat Intelligence Analyst
BLOG
Leaking ObjRefs to Exploit HTTP .NET Remoting
Exploiting ASP.NET TemplateParser — Part II: SharePoint (CVE-2023-33160)
Exploiting ASP.NET TemplateParser — Part I: Sitecore (CVE-2023-35813)
...
>
CODE WHITE - Finest Hacking
>
Credits
>
Fabian Weber
Authenticated Remote Code Execution in GridVis
HardCoded Encryption Password Allows for Authenticated Leak of Cleartext Database Credentials in GridVis
Unauthenticated Arbitrary File Write as Root in PROFINET-INspector NT
Unauthenticated OS Command Injection in PROFINET-INspector NT