[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FD] [tool] ModSecurity backdoor

To: fulldisclosure@xxxxxxxxxxxx
Subject: [FD] [tool] ModSecurity backdoor
From: Jozef Sudolsky <jozef@xxxxxxxxxxx>
Date: Sun, 01 Jan 2023 13:12:46 +0100

Announcing a backdoor tool running inside of ModSecurity WAF andallowing remote command execution with privileges of the web server.


https://github.com/azurit/modsecurity-backdoor


_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: https://seclists.org/fulldisclosure/

Next by Date: [FD] Centos Web Panel 7 Unauthenticated Remote Code Execution - CVE-2022-44877
Next by thread: [FD] Centos Web Panel 7 Unauthenticated Remote Code Execution - CVE-2022-44877
Index(es):
- Date
- Thread