3186
Talk and help about bugbounty
Good day to all. Question about media forms. Is it possible, or has anyone tried to create such a video file: ; The first or several frames should not be images, PlainText files, respectively, it is also necessary to make the ffmpeg utility throw this file away normally when it is called to dump the 1st frame.
The formats are as follows: video/webm video/mp4 video/quicktime video/ogg I found that quicktime can save uncompressed data, but the search did not lead to anything, and if you need to look here, then I will dig deeper, now the main thing is to decide on the form.
Or another option, audio in mp3 format, is it possible to correctly upload the cover here, while in the video of a text file, and so that ffmpeg also throws out this cover from it. Thank you!
Login Email Verification Bypass via /oauth/token
https://www.agdepe.xyz/2024/09/login-email-verification-bypass-via.html
15 year baad 4,5 inch height badni h to mere pass method hai DM karo
Читать полностью…
15 year baad 4,5 inch height badni h to mere pass method hai DM karo
Читать полностью…
15 year baad 4,5 inch height badni h to mere pass method hai DM karo
Читать полностью…
15 year baad 4,5 inch height badni h to mere pass method hai DM karo
Читать полностью…
15 year baad 4,5 inch height badni h to mere pass method hai DM karo
Читать полностью…
IDOR (Insecure Direct Object References) Vulnerability - Detailed Analysis
https://www.agdepe.xyz/2024/09/idor-insecure-direct-object-references.html
Дякую велике ☺️
Доброго Часу! Хочу підняти тему, що вкрай кричить, у прифронтових селищах які звільнили наші воїни ЗСУ, про тварин. Хтось взагалі в курсі який жах там діється? Багато собак і кішок, кинуті і ніхто їх не годує, я зіткнувся з ситуацією: Одні їдять мертвих тварин Собаки з голоду розривають котів і їдять Багато хто сидить на ланцюгу і болісно вмирає! Ні води немає ні їжі! Що вдавалося діставати ми привозили самі годували, особисто трьох вивіз! Я не з вашого селища, але їжджу і допомагаю, від того, що відбувається, трохи істерика не трапилася! Я шукаю допомогу по кормах але цього мало! Підключайтеся до порятунку наших тварин! Звітуватимемося! Потрібні корма і може хтось захоче допомогти на покупку корму то ось карта 4149499091985885 Сергій.
PayPal: makarovm123@gmail.com
Дякую всім за підтримку.💙💛
Все буде Україна ❤️
Смерть Путіну
Хана кацапам!!!!!
Read “SQL Injection Through SELECT, INSERT, UPDATE, and DELETE“ by Rohan Roshan on Medium: rohanroshan966/sql-injection-through-select-insert-update-and-delete-1cd3ee5101cc" rel="nofollow">https://medium.com/@rohanroshan966/sql-injection-through-select-insert-update-and-delete-1cd3ee5101cc
Читать полностью…
Anyone beginners interested in learning hacking and Cybersecurity training course? Kindly DM me
Читать полностью…
🚀 Just dropped a new blog on how I bypassed an Admin Panel using SQL injection! If you're into web security, you'll want to check this out. 🔐
👉 link.medium.com/UAtzVzdkqMb
Hi guys, I continue to write articles on websec in medium. In this article, I wrote about CSRF. Enjoy your reading. meryemddalgali/websec-csrf-xsrf-cross-site-request-forgery-6c048c6323d1" rel="nofollow">https://medium.com/@meryemddalgali/websec-csrf-xsrf-cross-site-request-forgery-6c048c6323d1
Читать полностью…
Good afternoon, everyone. This is the situation: 100% there is a vulnerability in the web application, associated with improper processing of media content, which leads to the possibility of writing to an arbitrary file. The application accepts images, video files and audio files. The processing is done using `ImageMagick (convert)'.
I figured out a little bit what and how. The application converts `GIF` files to mp4 while saving the first frame (as in the case of mp4 for the cover, to png and then processes ImageMagick-om). When processing mp3 files, it pulls out the cover if available, and also processes ImageMagick-om. Manipulations with video files and GIFs are performed using ffmpeg-a
The first thought that arises is the use of GhostScript configured files to write arbitrary files. It is not possible to download ps,xps, etc. files directly by changing the extension, because the application checks the content type.
The second thought is to pour the GhostScript file into the cover of the mp3 file, which I did, but when pulling it out, ffmpeg gives an error, as well as when trying to add an incorrect frame to the GIF with GhostScript.
Yes, and policy.xml may well be patched where GhostScript files are prohibited, so this is just a guess.
The main question is which way to look, maybe someone has encountered vulnerabilities in the processing of similar media files. And is it worth continuing to dig towards ImageMagick?? Or look for a Vulnerability elsewhere. The patch for the vulnerability of this product, among other things, prohibits the guest script in imagemagick, so I looked there right away.
Anyway, thanks for any advice or thoughts, because I don't know where to go anymore =))
15 year baad 4,5 inch height badni h to mere pass method hai DM karo
Читать полностью…
15 year baad 4,5 inch height badni h to mere pass method hai DM karo
Читать полностью…
15 year baad 4,5 inch height badni h to mere pass method hai DM karo
Читать полностью…
15 year baad 4,5 inch height badni h to mere pass method hai DM karo
Читать полностью…
15 year baad 4,5 inch height badni h to mere pass method hai DM karo
Читать полностью…
15 year baad 4,5 inch height badni h to mere pass method hai DM karo
Читать полностью…
https://youtu.be/c5UJYxJByTE?si=DNPv3FQYx7O5XI_g
Читать полностью…
https://youtu.be/18MYYV5-iCo?si=kD6OF_KXsgsZ6A5l
Читать полностью…
https://youtu.be/yfuqn3QvkDQ?si=JwyCr4nDxdny7uS8
Читать полностью…
I'm from Avitorgod Gaming Platform, we are currently looking for a long time agent who will work with us. We will give you a big salary .. If you interested , I will explain to you ..
Читать полностью…
Hi, I have seen message about Nuclei template file download. Is it removed now ?
Читать полностью…
https://vijetareigns.medium.com/hunting-bugs-for-re-hunter-350-81338c4ebf20
Читать полностью…