March 2022 – Blog | Octagon Networks

CVE-2022-24990: TerraMaster TOS unauthenticated remote command execution via PHP Object Instantiation

March 7, 2022

Introduction This report explains how researchers at Octagon Networks were able to chain two interesting vulnerabilities to achieve unauthenticated remote command […]

CVE-2022-24948: Apache JSPWiki preauth Stored XSS to ATO

March 2, 2022

| No Comments

| Uncategorized

Apache JSPWiki is a leading open source Wiki engine, feature-rich and built around standard JEE components (Java, servlets, JSP), according to […]

Month: March 2022

CVE-2022-24990: TerraMaster TOS unauthenticated remote command execution via PHP Object Instantiation

CVE-2022-24948: Apache JSPWiki preauth Stored XSS to ATO

Recent Posts

Archives

Categories