exploit - Hakai Offensive Security

exploit

A collection of 2 posts

Fortigate - Authentication Bypass Lead to Full Device Takeover

Fortigate - Authentication Bypass Lead to Full Device Takeover

1Day vulnerability research by Hakai - Research Team This post is about the journey to create a Proof-of-concept about CVE-2022-40684, this vulnerability has been assigned by Fortinet as an authentication bypass using an alternate path or channel vulnerability [CWE-288]. Timeline 07/10/2022 - First news about the vulnerability, on

SQL Injection and XSS Vulnerability on Centreon

SQL Injection and XSS Vulnerability on Centreon

I'm Daniel França Lima and i'm a penetration tester Jr and vulnerability researcher at Hakai Offensive Security. In order to help the hacking community, companies and also improve my skills, I periodically look for flaws in market applications with the goal of achieving responsible disclosure. Centreon is a system and