injection - ZeroSec - Adventures In Information Security

Leveraging Expression Language Injection (EL Injection) for RCE

Expression Language injection or EL Injection for short is an attack vector I'd never heard of until recently. This post talks about leveraging EL for RCE.

Blind XXE - Hunting in the Dark

Jul 7, 2017 11 min read learning bugbounty injection XXE

Before getting into the post, this isn't anything brand new or leet in the area of XML External Entity (Blind XXE) attacks, it is purely something I came across and wanted to share.

CSV Injection -> Meterpreter on Pornhub

Jul 29, 2016 2 min read bugbounty bug pornhub csv injection injection cell injection RCE meterpreter

This post will discuss an issue I found regarding CSV injection on Pornhub.com, allowing a remote attacker to inject malicious code into video titles resulting in potential full compromise of content creators

CSV Injection Revisited - Making Things More Dangerous(and fun)

Jul 22, 2016 4 min read bugbounty csv injection injection mitigations cell injection RCE meterpreter

In this post, I will discuss several methods and remediation steps that can be used to help escape and mitigate CSV [https://support.office.com/en-gb/article/Import-or-export-text-txt-or-csv-files-5250ac4c-663c-47ce-937b-339e391393ba] (Comma separated values) injection type