CVE-2021-45040 webshell
| | | | | |

CVE-2021-45040

A vulnerability (CVE-2021-45040) was reported in Spatie’s Media Library Pro, a Laravel add-on, allowing remote attackers to upload executable files. This happened because the ‘Temporary Upload’ function lacked authentication by default. Other issues include a lack of file name length protection and rate-limiting. Potential solutions include limiting executable file uploads, extending the TemporaryUpload model, and implementing rate limiting. The Laravel Media Library Pro team has since released fixes to address reported issues.

x64dbg LaunchProgram find password3
| |

Retrieve password from exe(3)

This article is part three of “Extract/Dump/Retrieve password from exe” series. Previously, we have discussed unpack/decompile an executable back to script in part one and dumping connection string credentials in part two. In this article, we will explore how we can retrieve passwords from exe using other techniques and tools such as Process Monitor from…

VS2019 VC# MSSQL x64 strings
| |

Dump password from exe(2)

This article is actually part two of “Extract/Dump password from exe” series. In part one, we focused on unpacking executable generated by script converter such as PyInstaller, Py2exe and AutoIt. In short, we will focus on executable compiled by Visual Studio and Delphi in this article. Basically, we will try to understand what information is…