Hacking Notes – Medium

Pinned

CVE-2024-51490 | Ampache v7.0.0 XSS | Admin Account Compromise

Introduction to CVE-2024–51490

Nov 1, 2024

CVE-2024-51490 | Ampache v7.0.0 XSS | Admin Account Compromise

Nov 1, 2024

CVE-2024–55008 | JATOS v3.9.4 Account Lockout Denial-of-Service

Introduction to CVE-2024–55008

Jan 2

CVE-2024–55008 | JATOS v3.9.4 Account Lockout Denial-of-Service

Jan 2

CVE-2024–51379 | JATOS v3.9.3 Stored XSS | Description Component

Introduction to CVE-2024–51379

Nov 5, 2024

CVE-2024–51379 | JATOS v3.9.3 Stored XSS | Description Component

Nov 5, 2024

CVE-2024–51380 | JATOS v3.9.3 Stored XSS | Properties Component

Introduction to CVE CVE-2024–51380

Nov 5, 2024

CVE-2024–51380 | JATOS v3.9.3 Stored XSS | Properties Component

Nov 5, 2024

CVE-2024–51381 | JATOS v3.9.3 CSRF | Admin Account Creation

Introduction to CVE CVE-2024–51381

Nov 5, 2024

CVE-2024–51381 | JATOS v3.9.3 CSRF | Admin Account Creation

Nov 5, 2024

CVE-2024–51382 | JATOS v3.9.3 CSRF | Admin Password Reset

Introduction to CVE-2024–51382

Nov 5, 2024

CVE-2024–51382 | JATOS v3.9.3 CSRF | Admin Password Reset

Nov 5, 2024

CVE-2024–51489, CVE-2024–51488, CVE-2024–51485, CVE-2024–51484, CVE-2024–51487 | Ampache v7.0.0

Introduction to CVE-2024–51489, CVE-2024–51488, CVE-2024–51485, CVE-2024–51484, CVE-2024–51487

Nov 1, 2024

Nov 1, 2024

CVE-2024-51486 | Ampache v7.0.0 XSS | Admin Account Compromise

Introduction to CVE-2024–51486

Nov 1, 2024

CVE-2024-51486 | Ampache v7.0.0 XSS | Admin Account Compromise

Nov 1, 2024

From Reflected to Stored: Unveiling Hidden Vulnerabilities of Self XSS

In the realm of web security, cross-site scripting (XSS) is a significant threat that can lead to various types of attacks. Among these…

Aug 23, 2024

From Reflected to Stored: Unveiling Hidden Vulnerabilities of Self XSS

Aug 23, 2024

How I Made $3000 in Bug Bounty from $0.65 Invested

Introduction

Aug 22, 2024

How I Made $3000 in Bug Bounty from $0.65 Invested

Aug 22, 2024

Hacking Notes

Hacking Notes

Help
Status
About
Careers
Press
Blog
Privacy
Terms
Text to speech
Teams