Tag: framework

4 articles

Looking for vulnerabilities in Strapi (CVE-2024-34065)

Date Tue 25 June 2024
Author Mathieu Farrell
Category Pentest

Discovery of two vulnerabilities (CVE-2024-34065) in Strapi, an open source content management system. In this post we explain how these vulnerabilities, if chained together, allow authentication to be bypassed.

Read article

PHP deserialization attacks and a new gadget chain in Laravel

Date Tue 13 February 2024
Author Mathieu Farrell
Category Pentest

Discovery of a new gadget chain in Laravel.

Read article

HiTB Challenge: IRMA - Results

Date Fri 15 May 2015
Author Alexandre Quint
Category Challenge

One month ago, we launched a development challenge. Here come the results.

Read article

HiTB Challenge: IRMA

Date Fri 17 April 2015
Author Guillaume Dedrie
Category Challenge

Contribute to IRMA and enter for your chance to win a free ticket to Amsterdam to attend the HITB security conference.

Read article