bug-bounty622
facebook464
xss316
google151
rce105
microsoft97
apple65
csrf61
account-takeover54
web354
writeup51
exploit42
sqli41
cve37
ssrf35
cloudflare33
dos33
malware29
privilege-escalation29
defi28
smart-contract-vulnerability25
idor24
subdomain-takeover24
ethereum23
smart-contract23
clickjacking23
access-control21
node21
vulnerability-disclosure21
browser20
auth-bypass20
lfi19
aws19
remote-code-execution18
react17
cloud17
reverse-engineering16
cors16
docker16
oauth15
info-disclosure15
race-condition15
solidity14
authentication-bypass14
supply-chain13
phishing13
wordpress12
denial-of-service11
sql-injection11
delegatecall11
0
vulnerability
Research demonstrating a complete RCE attack chain on DeskPro helpdesk software through multiple chained vulnerabilities: insufficient API access control (leaking JWT secrets and admin config), and insecure deserialization in the template editor. The exploit was demonstrated against Bitdefender's support center, achieving remote code execution from an unauthenticated user registration.
rce
remote-code-execution
helpdesk
deskpro
access-control
insufficient-access-control
api-vulnerability
insecure-deserialization
privilege-escalation
jwt
authentication-bypass
template-injection
twig
php-deserialization
pop-gadgets
credential-exposure
email-credentials
ticket-system
on-premise
self-hosted
CVE-2020-11465
CVE-2020-11463
CVE-2020-11466
CVE-2020-11464
CVE-2020-11467
DeskPro
Bitdefender
osTicket
Kayako
PHP Live!
Freelancer Inc
Redforce Web Security