jsf-viewstate

1 article
sort: new top best
clear filter
bug-bounty504 google358 xss310 microsoft301 facebook265 rce221 exploit213 malware168 apple164 cve142 account-takeover116 bragging-post102 privilege-escalation98 csrf92 phishing86 browser80 writeup78 supply-chain69 authentication-bypass69 dos68 stored-xss65 ssrf57 reflected-xss57 reverse-engineering55 react54 access-control52 aws49 input-validation49 cross-site-scripting48 docker47 cloudflare47 lfi47 web-security46 node46 ctf45 sql-injection45 smart-contract45 ethereum44 web-application44 web343 defi43 oauth43 race-condition40 open-source39 auth-bypass39 pentest39 cloud38 idor37 burp-suite36 info-disclosure36
0 5/10
How i found a 1500$ worth Deserialization vulnerability
bug-bounty

A researcher discovered a $1500 deserialization vulnerability in a JSF-based application by identifying unencrypted serialized Java objects in the javax.faces.ViewState parameter, then exploited it using the Jexboss tool to achieve remote code execution via an exposed JMX console.

deserialization java-deserialization jsf-viewstate rce remote-code-execution jboss java-server-faces jexboss bug-bounty java-serialization security-misconfiguration
Ashish Kunwar Jexboss JSF MyFaces Prototype 1.6.1 Bugcrowd Burp Suite Wappalyzer
medium.com · kh4sh3i/bug-bounty-writeups · 23 hours ago · details