security research
iltosec
ILTOSEC
security researcher
Ali İltizar
offensive security engineer & security researcher
/
recent posts view all ›
CVE-2026-48493: Privilege Escalation via Permission Bypass in Snipe-IT
Technical breakdown of CVE-2026-48493: Users with users.edit permission escalate to near-full system access via PreserveUnauthorizedPrivilegedPermissionsAction bypass. Detailed PoC and impact analysis.
2026-05-28
12 2
CVE
CVE-2026-48492: User Account Enumeration via Missing Authorization in Snipe-IT
Technical breakdown of CVE-2026-48492: A missing authorization flaw in Snipe-IT allowing authenticated users to enumerate accounts via the API.
2026-05-27
11 3
Rce
FacturaScripts <= 2026 Authenticated RCE via Malicious Plugin Upload
Detailed vulnerability analysis of an Authenticated Remote Code Execution (RCE) in FacturaScripts (<= 2026). Explore the PoC via malicious plugin upload and learn about server hardening mitigations.
2026-05-01
139 2
Rce · CMS · File Upload Bypass
EspoCRM v9.3.4 Authenticated Remote Code Execution via Malicious Extension Upload
Explore the technical analysis of the Authenticated Remote Code Execution (RCE) vulnerability in EspoCRM <= v9.3.4. Learn how malicious extension uploads can lead to full OS command execution and find mitigation strategies. Official PoC and exploit details included.
2026-04-13
240 1
recent cves view all ›
Snipe-IT < 8.5.1 -- Privilege Escalation via Insufficient Permission Validation in User Update API
Snipe-IT's user update API endpoint (PATCH /api/v1/users/{id}) does not sufficiently validate the permissions payload s…
2026-05
Snipe-IT < 8.5.1 -- User Account Enumeration via Unauthenticated selectlist Endpoint
The GET /api/v1/users/selectlist endpoint is missing the view.selectlists authorization check present in all other sele…
2026-05
CVE-2024-11406 - Stored XSS Vulnerability in Django CMS 3.0.0 (Attributes Fields)
The vulnerability resides in the Django CMS admin panel under the Page Editing interface, specifically when utilizing t…
2024-11
CVE-2024-11404 - File Upload Bypass Vulnerability in Django Filer 3.2.3
The vulnerabilities were identified in django-filer 3.2.3, a file management application commonly used with django CMS.…
2024-11
CVE-2024-11319 - Stored XSS Vulnerability in Django CMS 4.1.3
Django CMS version 4.1.3 is affected by a stored Cross-Site Scripting (XSS) vulnerability. This vulnerability allows at…
2024-11