Quote:
Originally Posted by AdultKing
What he is saying is that they found a way to run a program on Pornhub that shouldn't have been allowed to happen and they remotely did so, thus gaining a bounty for finding the bug.
They found a vulnerability in PHP that allowed them to do this.
btw: follow @swiftonsecurity on Twitter for some internet security goodness.
https://twitter.com/SwiftOnSecurity
|
Thanks You.
Yes, But I gets lost in details.
Details of exploit is two much. I buy shell coder handbook, but difficult to reads and old book for 32 byte systems. I wants to learn more. About stack and heap.
I wants to finds RCE two. I only finds XSS. Maybe I try capture flags.
I now follows SwiftOnSecurity now. Very good. Thanks you.