Skip to main content

Sorcery Blog

Posts

MyBB Admin Panel RCE CVE-2023-41362

https://blog.sorcery.ie/posts/mybb_acp_rce/ Sorcery Ltd

PHPInfo Exposure in MyPrestaModules Modules CVE-2023-39677

https://blog.sorcery.ie/posts/myprestamodules_phpinfo/ Sorcery Ltd

SQLi in SimpleImportProduct Prestashop Module CVE-2023-39675

https://blog.sorcery.ie/posts/simpleimportproduct_sqli/ Sorcery Ltd

XSS in FieldPopupNewsletter Prestashop Module CVE-2023-39676

https://blog.sorcery.ie/posts/fieldpopupnewsletter_xss/ Sorcery Ltd

SQLi in XIPBlog Prestashop Module CVE-2023-27847

https://blog.sorcery.ie/posts/xipblog_sqli/ Sorcery Ltd

HigherLogic Community RCE Vulnerability

https://blog.sorcery.ie/posts/higherlogic_rce/ Sorcery Ltd

Auth Bypass in ADOdb CVE-2021-3850

https://blog.sorcery.ie/posts/adodb_auth_bypass/ Sorcery Ltd

Proof of Concept for CVE-2021-38314 (Redux Framework)

https://blog.sorcery.ie/posts/redux_wordpress/ Sorcery Ltd

SQLi in SmartBlog CVE-2021-37538

https://blog.sorcery.ie/posts/smartblog_sqli/ Sorcery Ltd

SQLi in ph_simpleblog CVE-2021-36748

https://blog.sorcery.ie/posts/ph_simpleblog_sqli/ Sorcery Ltd

Adminer - A Guide For All its Vulnerabilities

https://blog.sorcery.ie/posts/adminer/ Sorcery Ltd

The Time I tried to get a Bounty from Binance

https://blog.sorcery.ie/posts/binance-phishing-bounty/ Sorcery Ltd

Exposed .git Folder and How To Remediate it

https://blog.sorcery.ie/posts/git-directory-exposure/ Sorcery Ltd