all InfoSec news
RCE on Application’s Tracking Admin Panel
InfoSec Write-ups - Medium infosecwriteups.com
In this blog post, we’ll explore some intriguing scenarios where the add extension functionality in a particular subdomain can be exploited to enable a Remote Code Execution vulnerability. The application in question is a tracking system that can monitor study hours, walking distance, and, if using the Android version, application usage levels. By delving into the specifics of this potential vulnerability and its potential impact, we hope to provide valuable insights for both developers and security professionals.
Vulnerability in Tracking …
admin android application blog blog post bug bounty bugbounty-writeup code code execution cybersecurity enable exploited extension monitor panel question rce remote code remote code execution study subdomain system tracking version vulnerability