all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Freelancy 1.0.0 Remote Code Execution

Add to bookmarks
Jan. 19, 2023, 1:03 p.m. | Ismail Tasdelen

System Weakness - Medium systemweakness.com

Freelancy version 1.0.0 suffers from a remote code execution vulnerability.

Freelancy version 1.0.0

Exploit Details :

# Exploit Title: Freelancy - Freelance Management App v1.0.0 - RCE (Authenticated) Arbitrary File Download 
# Date: 03-01-2019 
# Exploit Author: Ismail Tasdelen
# Vendor Homepage: https://vaaip.com/
# Software Link: https://codecanyon.net/item/freelancy-freelance-project-management-application/25288636
# Software: Freelancy - Freelance Management App
# Product Version: v1.0.0
# Vulernability Type: Code Injection
# Vulenrability: Remote Code Execution ( RCE )
# CVE : CVE-2020-5505

Description :

Freelancy v1.0.0 allows …

1.0.0 application security code code execution hacking rce remote code execution web security

Visit resource

More from systemweakness.com / System Weakness - Medium

Mittre Att&ck‘s User Manual 2 hours ago | systemweakness.com
adversary amp att attacks +22
Unveiling the Hidden: A Guide to Passive Subdomain Enumeration 2 hours ago | systemweakness.com
bug bounty hacking security technology +1
Limit Requests to EC2 Instances to Cloudflare Only IPs 2 hours ago | systemweakness.com
aws aws lambda cloudflare security +1
Canary Codes for Curious Minds 2 hours ago | systemweakness.com
canary tokens hacking ip address location +1
Zero Trust Network Access 1 day ago | systemweakness.com
least privilege microsegmentation network security virtual private network +1
Ransomware-as-a-Service: Democratizing Digital Destruction and How to Fortify Your Defenses 1 day ago | systemweakness.com
as-a-service attacks businesses critical +24
Detecting Mobile Threats: Indicators of Compromise 1 day ago | systemweakness.com
business compromise continue cybersecurity +13
Keeper Write-up 1 day ago | systemweakness.com
access can compromise credential +27
Sau Write-up 1 day ago | systemweakness.com
access com command command injection +24

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Security Engineer, Infrastructure Protection

@ Google | Hyderabad, Telangana, India
View on infosec-jobs.com

Senior Security Software Engineer

@ Microsoft | London, London, United Kingdom
View on infosec-jobs.com

Consultor Ciberseguridad (Cadiz)

@ Capgemini | Cádiz, M, ES
View on infosec-jobs.com

Cyber MS MDR - Sr Associate

@ KPMG India | Bengaluru, Karnataka, India
View on infosec-jobs.com

Privacy Engineer, Google Cloud Privacy

@ Google | Pittsburgh, PA, USA; Raleigh, NC, USA
View on infosec-jobs.com
View more jobs