Ssrf

Three Security Findings …

Background

Tautulli is a Python/CherryPy web application that sits alongside your Plex Media Server and gives you statistics, notifications, and monitoring for everything happening on your server. It is one of the most popular self-hosted Plex companion apps, and a lot of people run it exposed on …

Unauthenticated SSRF in …

Background

RustDesk is an open-source remote desktop tool written in Rust. It is basically the self-hosted alternative to TeamViewer or AnyDesk, and it has gotten pretty popular because you can run your own relay and rendezvous server. That self-hosted server model is actually the interesting part …

Ssrf

Three Security Findings …

Background

Unauthenticated SSRF in …

Background

Finding LDAP Injection in Snipe-IT

AMP Deep Extraction Open Redirect in DuckDuckGo Privacy Essentials (Firefox)

OPNsense: LDAP Injection via Unsanitized Login Username