Video wird geladen...

Video konnte nicht geladen werden

Beim Laden dieses Videos ist ein Problem aufgetreten. Dies könnte an einem vorübergehenden Netzwerkproblem liegen oder das Video ist möglicherweise nicht verfügbar.

⚠️ Update for CVE-2024-21413 💣 Managed & confirmed Microsoft Outlook Remote Code Execution (RCE) but won't publish details (yet).

Alex

3,190 subscribers

175,922 Aufrufe • vor 2 Jahren •via X (Twitter)

Nachrichten & Politik Bildung Wissenschaft & Technologie

Anya Rossi• Live Now

Private livecam show

10 Kommentare

Profilbild von Alex

Alexvor 2 Jahren

Given that I don't see myself as particularly intelligent and yet managed to achieve this, it stands to reason that more skilled individuals are surely on the brink of similar discoveries. This suggests that Microsoft may need to revise their security advisories shortly.

Profilbild von John Hammond

John Hammondvor 2 Jahren

NICE!!!

Profilbild von Dex604

Dex604vor 2 Jahren

🤔 I don't it... Didn't you already published a PoC on Github ?

Profilbild von Alex

Alexvor 2 Jahren

Without the RCE, yes.

Profilbild von Kristiyan Boykov

Kristiyan Boykovvor 2 Jahren

I can only imagine the impact... q.q

Profilbild von ︎ ︎

︎ ︎vor 2 Jahren

@HaifeiLi

Profilbild von vT15”

vT15”vor 2 Jahren

Congrats 🎉

Profilbild von Pj

Pjvor 2 Jahren

Single click takeover?

Profilbild von Alex

Alexvor 2 Jahren

NTLM Leak can be 0-click (thx @johntroony) - will update the repo tonight.

Profilbild von H4cker

H4ckervor 2 Jahren

W0W congratulations 🎊

Ähnliche Videos

🚨CVE-2024-21413 - Microsoft Outlook Remote Code Execution Vulnerability PoC (no audio) Credit:

🚨CVE-2024-21413 - Microsoft Outlook Remote Code Execution Vulnerability PoC (no audio) Credit:

Dark Web Informer

69,288 Aufrufe • vor 1 Jahr

CVE-2024-29269: Remote Code Execution PoC Credit:

CVE-2024-29269: Remote Code Execution PoC Credit:

Dark Web Informer

69,755 Aufrufe • vor 1 Jahr

CVE-2023-23397 Exploiting CVE-2023-23397: Microsoft Outlook Elevation of Privilege Vulnerability. Details: #infosec #CyberSecurity #Pentesting #redteam

CVE-2023-23397 Exploiting CVE-2023-23397: Microsoft Outlook Elevation of Privilege Vulnerability. Details: #infosec #CyberSecurity #Pentesting #redteam

HackGit

39,726 Aufrufe • vor 3 Jahren

🚨CVE-2025-26666: Windows Media Remote Code Execution Vulnerability Credit:

🚨CVE-2025-26666: Windows Media Remote Code Execution Vulnerability Credit:

Dark Web Informer

13,379 Aufrufe • vor 1 Jahr

💥 Remote Code Execution in GitHub Copilot (CVE-2025-53773) 👉 Prompt injection exploit writes to Copilot config file and puts it into YOLO mode, then we get immediate RCE 🔥 Bypasses all user approvals 🛡️ Patch is out today. Update before someone else does it for you

💥 Remote Code Execution in GitHub Copilot (CVE-2025-53773) 👉 Prompt injection exploit writes to Copilot config file and puts it into YOLO mode, then we get immediate RCE 🔥 Bypasses all user approvals 🛡️ Patch is out today. Update before someone else does it for you

Johann Rehberger

117,524 Aufrufe • vor 10 Monaten

🚨CVE-2023-20198: Remote Code Execution via File Upload Vulnerability | $15,000 Bounty | PoC Credit:

🚨CVE-2023-20198: Remote Code Execution via File Upload Vulnerability | $15,000 Bounty | PoC Credit:

Dark Web Informer

22,486 Aufrufe • vor 1 Jahr

POC for CVE-2024-38063 (RCE in Windows TCP/IP) :

POC for CVE-2024-38063 (RCE in Windows TCP/IP) :

Binni Shah

41,227 Aufrufe • vor 1 Jahr

🚨PoC for CVE-2024-46538 PfSense Stored XSS lead to RCE

🚨PoC for CVE-2024-46538 PfSense Stored XSS lead to RCE

Dark Web Informer

64,295 Aufrufe • vor 1 Jahr

CVE-2026-20841-POC REMOTE CODE EXECUTION VULNERABILITY IN NOTEPAD VERSION 11 Mr Phil Ghana 🇬🇭 Nana Sei Anyemedu

CVE-2026-20841-POC REMOTE CODE EXECUTION VULNERABILITY IN NOTEPAD VERSION 11 Mr Phil Ghana 🇬🇭 Nana Sei Anyemedu

H4RUK7 KIRA 🇯🇵🇨🇵

20,829 Aufrufe • vor 4 Monaten

🚨PoC for SysAid PreAuth RCE Chain (CVE-2025-2775, CVE-2025-2776, CVE-2025-2777, CVE-2025-2778) GitHub: Write-up:

🚨PoC for SysAid PreAuth RCE Chain (CVE-2025-2775, CVE-2025-2776, CVE-2025-2777, CVE-2025-2778) GitHub: Write-up:

Dark Web Informer

18,120 Aufrufe • vor 8 Monaten

It's the bug of the month for June 2026! CVE-2026-45657 - A CVSS 9.8 vulnerability in Kernel that allows remote, unauthenticated code execution at SYSTEM without user interaction. Yikes!

It's the bug of the month for June 2026! CVE-2026-45657 - A CVSS 9.8 vulnerability in Kernel that allows remote, unauthenticated code execution at SYSTEM without user interaction. Yikes!

TrendAI Zero Day Initiative

32,554 Aufrufe • vor 16 Tagen

CVE-2026-42530 NGINX RCE

CVE-2026-42530 NGINX RCE

Clandestine

56,620 Aufrufe • vor 7 Tagen

🚨 CVE-2025-6389: WordPress Sneeit Framework plugin vulnerability currently under active exploitation PoC: ▪️Vulnerability Type: Remote Code Execution (RCE) ▪️CVSS: 9.8 ▪️Published: 11/24/2025 Impact: ▪️Full site compromise ▪️Create admin accounts ▪️Install backdoors/malicious files ▪️Redirect visitors or inject malware Credit:

🚨 CVE-2025-6389: WordPress Sneeit Framework plugin vulnerability currently under active exploitation PoC: ▪️Vulnerability Type: Remote Code Execution (RCE) ▪️CVSS: 9.8 ▪️Published: 11/24/2025 Impact: ▪️Full site compromise ▪️Create admin accounts ▪️Install backdoors/malicious files ▪️Redirect visitors or inject malware Credit:

Dark Web Informer

16,001 Aufrufe • vor 5 Monaten

🤬CVE-2025-49113: Post‑Auth Remote Code Execution in Roundcube via PHP Object Deserialization FOFA Link: FOFA Query: app="roundcube" Results: 51,584,735 Advisory: CVSS: 9.9

🤬CVE-2025-49113: Post‑Auth Remote Code Execution in Roundcube via PHP Object Deserialization FOFA Link: FOFA Query: app="roundcube" Results: 51,584,735 Advisory: CVSS: 9.9

X

14,948 Aufrufe • vor 1 Jahr

⚠️ We've confirmed critical CVE-2024-45519 in Zimbra! SMTP-based vulnerability in postjournal service allows unauthenticated attackers to inject commands under zimbra user. ✅ Update your software ASAP to avoid exploitation!

⚠️ We've confirmed critical CVE-2024-45519 in Zimbra! SMTP-based vulnerability in postjournal service allows unauthenticated attackers to inject commands under zimbra user. ✅ Update your software ASAP to avoid exploitation!

PT SWARM

84,282 Aufrufe • vor 1 Jahr

RCEliteLLM - Chaining an Environment Variable Leak with Jinja2 SSTI for Remote Code Execution

RCEliteLLM - Chaining an Environment Variable Leak with Jinja2 SSTI for Remote Code Execution

McCaulay

11,970 Aufrufe • vor 1 Monat

CVE 2020-14882: WebLogic Server Unauthenticated RCE via GET request Credit:

CVE 2020-14882: WebLogic Server Unauthenticated RCE via GET request Credit:

Dark Web Informer - Cyber Threat Intelligence

13,926 Aufrufe • vor 1 Jahr

🚨POC RELEASED🚨PoC for SQL Injection leads to RCE in Wordpress released (CVE-2024-27956). #Clearnet #DarkWebInformer #DarkWeb #Exploit #Cyberattack #Cybercrime #Wordpress #Infosec #CTI #CVE202427956 #Vulnerability

🚨POC RELEASED🚨PoC for SQL Injection leads to RCE in Wordpress released (CVE-2024-27956). #Clearnet #DarkWebInformer #DarkWeb #Exploit #Cyberattack #Cybercrime #Wordpress #Infosec #CTI #CVE202427956 #Vulnerability

Dark Web Informer

51,367 Aufrufe • vor 2 Jahren

🚨CVE-2025-3776: Full WordPress Takeover Without Login (Critical RCE Exploit) Credit:

🚨CVE-2025-3776: Full WordPress Takeover Without Login (Critical RCE Exploit) Credit:

Dark Web Informer

79,747 Aufrufe • vor 1 Jahr