RCE Archives

February 6, 2025

Windows Telephony Services 2025 Patch Diffing And Analysis Pt 1

Published by shubham Patil at February 6, 2025

Windows Telephony Services: 2025 Patch Diffing & Analysis Part 1

Introduction At the start of 2025, on January 14th, Microsoft released over 20+ CVEs addressing Remote Code Execution (RCE) vulnerabilities in Microsoft Telephony Services, primarily caused […]

June 19, 2024

Published by SecureLayer7 Lab at June 19, 2024

Analysis of CVE-2024-25065: Apache OFBiz Security bypass

Introduction CVE-2024-25065 is a vulnerability that exists in Apache OFBiz before version 18.12.12. It is a path traversal vulnerability that allows authentication bypass through the contextPath […]

February 27, 2023

Published by Piyush Paliwal at February 27, 2023

A Road from Dependency Confusion to RCE

Dependency confusion vulnerability was found in early 2021 by Alex Birsan and helped hackers to gain RCE on some of the biggest tech giants like Apple, […]

February 3, 2023

Published by Srivani Reddy at February 3, 2023

Remote Code Execution Vulnerability in Atom CMS 2.0 (CVE-2022-25487)

Atom CMS empowers web developers to develop an interactive and dynamic web application in simple steps. Atom CMS is an open-source Retro CMS that offers a […]