Marcin Teodorczykinintive DevelopersHardening Docker Quick TipsIt’s been over 6 years from the initial release of Docker on March 13, 2013. In the world of software development it looks more like a few…May 29, 2019May 29, 2019
Marcin Teodorczykinintive DevelopersGravCMS: XSS via SVGPreviously I’ve described privilege escalation with XSS and how to use user settings to gain admin privileges. Now it’s time for the last…Apr 2, 2019Apr 2, 2019
Marcin Teodorczykinintive DevelopersGrav CMS: Avatar Settings as a Door to Superadmin PrivilegesA continuation of the first article related to Grav CMS. This time a more serious privilege escalation related to avatar settings, also…Feb 5, 20191Feb 5, 20191
Marcin Teodorczykinintive DevelopersPrivilege escalation with XSS in Grav CMSTracking down security bugs in web applications is an exciting task. It’s especially rewarding when a fast growing open source solution is…Nov 7, 2018Nov 7, 2018