Hello everyone, A while back, when I was hunting on a private program on HackerOne. Let’s call it redacted.com. I saw it was using WordPress CMS at redacted.com/blog/ I performed ffuf scan with my custom WordPress plugin wordlist and found…
Tag: ganofins exploits
Description: An issue was discovered in GitLab Community and Enterprise Edition 8.1 through 12.2.1. Certain areas displaying Markdown were not properly sanitizing some XSS payloads.Gitlab issue descriptions and other areas that accept markdown like .md files in repositories are vulnerable…