We have published the RichFaces vulnerability details on the CODE WHITE GmbH blog at codewhitesec.blogspot.com/2018/05/poor-r…

Write-ups on three recent WebLogic #javadeser RCEs (translated from chinese): translate.google.com/translate?sl=a… translate.google.com/translate?hl=e…

It is always good to take a 2nd look at existing vulns. So Markus Wulftange found a new rock-solid exploitation technique for the Telerik UI framework (hint: affects an Avast product ;) Enjoy: codewhitesec.blogspot.com/2019/02/teleri… #CVE-2017-11317

TYPO3-EXT-SA-2019-018: Remote Code Execution in extension "freeCap CAPTCHA" (sr_freecap) typo3.org/security/advis…

Once upon a time there was a #Sophos XG Firewall N-day that had Ramoliks and niph dig deep until they got RCE, a 0-day and a comprehensive blog post. #CVE-2020-12271 #CVE-2020-15504 codewhitesec.blogspot.com/2020/07/sophos…

@TwitterSupport I truly cannot fathom why this access would ever even exist. This is like an employee having access to unencrypted credit card or bank account numbers. Companies know not to do this. How did Twitter not know this was unacceptably risky??

Unauth'd admin access to #SAP #Netweaver? Our very own Kai Ullrich has you covered, see #CVE-2021-21481 and SAP Security Note 3022422. Better patch than sorry. Our customers got their heads-up already and we'll publish a detailed blog post when appropriate.

How the search for deser bugs in #SAP sent Kai Ullrich down a rabbit hole where he winded up stumbling upon a completely unrelated unauth'ed admin access #CVE-2021-21481 codewhitesec.blogspot.com/2021/06/about-…

Check out my post about handcrafted gadgets and a groovy 2.4.5 gadget codewhitesec.blogspot.de/2018/01/handcr…

Interested in Advanced Java Exploitation? Check out our new blog post about exploiting Adobe ColdFusion codewhitesec.blogspot.com/2018/03/exploi…