all InfoSec news
CVE-2022-27226: CSRF to RCE in iRZ Mobile Routers through 2022-03-16
March 18, 2022, 11 p.m. |
John J Hacking johnjhacking.com
John Jackson
Chris Mack
Exploit Development
Stephen Chavez
Robert Willis
Identification Default credentials were discovered on an iRZ Mobile Router login page. Utilizing root:root gave us access to the administrative functionality for the device. Having administrative access allows for various manipulation. Any setting that can be modified by an administrator was accessible, but the function that caught specific interest was the “Crontabs” feature in the services tab.
More from johnjhacking.com / John J Hacking
OSCP Reborn - 2023 Exam Preparation Guide
1 year, 4 months ago |
johnjhacking.com
CVE-2022-27226: CSRF to RCE in iRZ Mobile Routers through 2022-03-16
2 years, 1 month ago |
johnjhacking.com
Jobs in InfoSec / Cybersecurity
Social Engineer For Reverse Engineering Exploit Study
@ Independent study | Remote
Cloud Security Analyst
@ Cloud Peritus | Bengaluru, India
Cyber Program Manager - CISO- United States – Remote
@ Stanley Black & Decker | Towson MD USA - 701 E Joppa Rd Bg 700
Network Security Engineer (AEGIS)
@ Peraton | Virginia Beach, VA, United States
SC2022-002065 Cyber Security Incident Responder (NS) - MON 13 May
@ EMW, Inc. | Mons, Wallonia, Belgium
Information Systems Security Engineer
@ Booz Allen Hamilton | USA, GA, Warner Robins (300 Park Pl Dr)