Skip to main content

Posts

CFOR Exploit - Recovering Deleted and Private Github Commits

2024-08-03

https://blog.sorcery.ie/posts/cfor_exploit/ Sorcery Ltd

MyBB Admin Panel RCE CVE-2023-41362

2023-09-11

https://blog.sorcery.ie/posts/mybb_acp_rce/ Sorcery Ltd

PHPInfo Exposure in MyPrestaModules Modules CVE-2023-39677

2023-09-08

https://blog.sorcery.ie/posts/myprestamodules_phpinfo/ Sorcery Ltd

SQLi in SimpleImportProduct Prestashop Module CVE-2023-39675

2023-09-08

https://blog.sorcery.ie/posts/simpleimportproduct_sqli/ Sorcery Ltd

XSS in FieldPopupNewsletter Prestashop Module CVE-2023-39676

2023-09-07

https://blog.sorcery.ie/posts/fieldpopupnewsletter_xss/ Sorcery Ltd

SQLi in XIPBlog Prestashop Module CVE-2023-27847

2023-08-03

https://blog.sorcery.ie/posts/xipblog_sqli/ Sorcery Ltd

HigherLogic Community RCE Vulnerability

2022-02-03

https://blog.sorcery.ie/posts/higherlogic_rce/ Sorcery Ltd

Auth Bypass in ADOdb CVE-2021-3850

2022-01-26

https://blog.sorcery.ie/posts/adodb_auth_bypass/ Sorcery Ltd

Proof of Concept for CVE-2021-38314 (Redux Framework)

2021-10-04

https://blog.sorcery.ie/posts/redux_wordpress/ Sorcery Ltd

SQLi in SmartBlog CVE-2021-37538

2021-08-21

https://blog.sorcery.ie/posts/smartblog_sqli/ Sorcery Ltd

SQLi in ph_simpleblog CVE-2021-36748

2021-08-18

https://blog.sorcery.ie/posts/ph_simpleblog_sqli/ Sorcery Ltd

Adminer - A Guide For All its Vulnerabilities

2021-03-11

https://blog.sorcery.ie/posts/adminer/ Sorcery Ltd

#Adminer

The Time I tried to get a Bounty from Binance

2020-12-10

https://blog.sorcery.ie/posts/binance-phishing-bounty/ Sorcery Ltd

Exposed .git Folder and How To Remediate it

2020-11-23

https://blog.sorcery.ie/posts/git-directory-exposure/ Sorcery Ltd