security research
iltosec
ILTOSEC
security researcher
Ali İltizar
offensive security engineer & security researcher
CRTO OSCP+ OSWE TSE eWPTXv2
/
recent posts view all ›
Cloud·AWS
From Presigned URL to Data Exposure: Exploiting a Misconfigured MinIO Instance
How an unauthenticated presigned URL endpoint and a public MinIO bucket misconfiguration exposed over 3GB of corporate internal documents during an authorized red team engagement.
2026-05-31
8 0
CVE·Vulnerability Research
CVE-2026-48493: Privilege Escalation via Permission Bypass in Snipe-IT
Technical breakdown of CVE-2026-48493: Users with users.edit permission escalate to near-full system access via PreserveUnauthorizedPrivilegedPermissionsAction bypass. Detailed PoC and impact analysis.
2026-05-28
53 2
CVE·Vulnerability Research · CVE
CVE-2026-48492: User Account Enumeration via Missing Authorization in Snipe-IT
Technical breakdown of CVE-2026-48492: A missing authorization flaw in Snipe-IT allowing authenticated users to enumerate accounts via the API.
2026-05-27
61 4
Rce·CVE · Rce
FacturaScripts <= 2026 Authenticated RCE via Malicious Plugin Upload
Detailed vulnerability analysis of an Authenticated Remote Code Execution (RCE) in FacturaScripts (<= 2026). Explore the PoC via malicious plugin upload and learn about server hardening mitigations.
2026-05-01
169 2
recent cves view all ›
CVE-2026-48493: Snipe-IT < 8.5.1 -- Privilege Escalation via Insufficient Permission Validation in User Update API
Snipe-IT's user update API endpoint (PATCH /api/v1/users/{id}) does not sufficiently validate the permissions payload s…
2026-05
CVE-2026-48492: Snipe-IT < 8.5.1 -- User Account Enumeration via Unauthenticated selectlist Endpoint
The GET /api/v1/users/selectlist endpoint is missing the view.selectlists authorization check present in all other sele…
2026-05
CVE-2024-11406 - Stored XSS Vulnerability in Django CMS 3.0.0 (Attributes Fields)
The vulnerability resides in the Django CMS admin panel under the Page Editing interface, specifically when utilizing t…
2024-11
CVE-2024-11404 - File Upload Bypass Vulnerability in Django Filer 3.2.3
The vulnerabilities were identified in django-filer 3.2.3, a file management application commonly used with django CMS.…
2024-11
CVE-2024-11319 - Stored XSS Vulnerability in Django CMS 4.1.3
Django CMS version 4.1.3 is affected by a stored Cross-Site Scripting (XSS) vulnerability. This vulnerability allows at…
2024-11