Home
About
Contact
Projects
Blog
CVE

iltosec

Offensive Security Engineer — OSCP+ | OSWE | CRTO | eWPTXv2 | TSE | SRT

127.0.0.1

iltosec@hotmail.com

@iltosec

@iltosec

@ali-iltizar

Home

File Upload Bypass Articles

EspoCRM v9.3.4 Authenticated Remote Code Execution via Malicious Extension Upload

ESPOCRM V9.3.4 AUTHENTICATED REMOTE CODE EXECUTION VIA MALICIOUS EXTENSION UPLOAD

Explore the technical analysis of the Authenticated Remote Code Execution (RCE) vulnerability in EspoCRM <= v9.3.4. Learn how malicious extension …...

13 Apr 2026 ALI İLTIZAR
Reading Time: 3 min Views: 195

Exploiting Flask Authentication and RCE Vulnerabilities – Chain Lab Writeup

EXPLOITING FLASK AUTHENTICATION AND RCE VULNERABILITIES – CHAIN LAB WRITEUP

Learn how to exploit Flask authentication and remote code execution (RCE) vulnerabilities in the Chain Lab challenge on CyberExam. This …...

02 Dec 2024 ALI İLTIZAR
Reading Time: 4 min Views: 8057

CVE-2024-11404: Medium Severity File Upload Vulnerabilities in django-filer 3.2.3

CVE-2024-11404: MEDIUM SEVERITY FILE UPLOAD VULNERABILITIES IN DJANGO-FILER 3.2.3

Unrestricted Upload of File with Dangerous Type, Improper Input Validation, Improper Neutralization of Script-Related HTML Tags in a Web Page …...

20 Nov 2024 ALI İLTIZAR
Reading Time: 5 min Views: 4518

««
«
1
»
»»

© 2025 iltosec. All rights reserved.