TechAnarchy
  • Twitter
  • RSS

Responsible Disclosure

This is just a page to track all of my disclosed issues and vulnerabilities.

  • Control Web Panel: Account Hijack – CVE-2022-25047
  • Control Web Panel: Pre Auth RCE – CVE-2022-25046
  • SureMDM: XSS – RCE on all managed Hosts
  • SureMDM: RCE – Linux Agent
  • Netgear: Command Injection – PSV-2021-0169
  • Netgear: Sensitive Information Disclosure – PSV-2021-0171
  • Netgear: Command Injection – PSV-2021-0172
  • Fitbit: Malicious Applications
  • Wagtail XSS – CVE-2021-29434
  • OSSN: Arbitrary File Read – CVE-2020-10560
  • F5 BigIP: XSS – CVE-2020-27719
  • Anubis: XSS
  • Security Onion: XSS
  • Security Onion: Command injection
  • StartMe: XSS in widgets
  • Imperva: WAF Bypass
  • Nandos: XSS
  • OSSN: XSS – CVE-2020-10559

Menu

  • Home
  • Disclosure/Vulnerabilities
  • Talks & Webinars
  • Astrophotography
  • TheHermit
  • Chip
  • Hazzy

Recent Posts

Full Moon

The full moon was actually on the 8th of December but for me, the forecast

Analysing an O.MG cable

Setting up an O.MG cable for keystroke injection attacks, and then forensically dumping the firmware for analysis.

Wagtail XSS + LocalStorage = Account Hijack

Every now and then I like to do a little bit of bug hunting in

© TechAnarchy - All rights reserved
Design: HTML5 UP, Published with Ghost