Stack Overflows for Beginners — Level 5
Welcome again to the Stack Overflows for Beginners series! In this post, we continue with the Level 5 binary and work on exploiting it to get the next flag...
Read articleStack Overflows for Beginners — Level 4
Welcome again to the Stack Overflows for Beginners series! In this post, we continue with the Level 4 binary and work on exploiting it to get the next flag....
Read articleLinux Usermode Exploitation 101
Introduction The aim of this course is to train students in the fundamentals of Linux usermode exploitation. You will learn how stack memory works, how...
Read articleStack Overflows for Beginners — Level 3
Welcome again to the Stack Overflows for Beginners series! In this post, we continue with the Level 3 binary and work on exploiting it to get the next flag....
Read articleStack Overflows for Beginners — Level 2
Welcome again to the Stack Overflows for Beginners series! In this post, we continue with the Level 2 binary and work on exploiting it to get the next flag....
Read articleStack Overflows for Beginners — Level 1
In this post, we’ll explore the fundamentals of exploiting stack-based buffer overflows using the “Stack Overflows for Beginners: 1.0.1” challenges from VulnHub. We’ll walk through analyzing...
Read articleWalkthrough: Config Editor app in Android
Affected Product Config Editor Affected version 1.0 CVE ID N/A Vulnerability Type Remote Code Execution Type MOBILEAPPS DescriptionCVE-2022-1471 identifies a critical unsafe deserialization vulnerability within...
Read articleCVE-2023-37152: Online Art gallery project 1.0 – Arbitrary File Upload (Unauthenticated)
Affected Product Online Art gallery project Affected version 1.0 CVE ID CVE-2023-37152 Vulnerability Type Arbitrary File Upload (Unauthenticated) Type WEBAPPS Description Online Art Gallery Project...
Read articleCVE-2023-36256: Online Examination System Project 1.0 – Cross-site request forgery (CSRF)
Affected Product Online Examination System Project Affected version 1.0 CVE ID CVE-2023-36256 Vulnerability Type Cross-site request forgery (CSRF) Type WEBAPPS Description The Online Examination System...
Read articleCVE-2020-29168: Online Doctor Appointment Booking System PHP and Mysql 1.0 – ‘q’ SQL Injection
An SQL injection vulnerability was discovered in PHP Doctor Appointment System by me on 11/16/2020. In ‘getuser.php’ file, GET parameter ‘q’ is vulnerable. The vulnerability...
Read article