mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-07 11:06:19 +00:00
1.2 KiB
1.2 KiB
CVE-2020-8289
&color=brighgreen)
Description
Backblaze for Windows before 7.0.1.433 and Backblaze for macOS before 7.0.1.434 suffer from improper certificate validation in bztransmit helper due to hardcoded whitelist of strings in URLs where validation is disabled leading to possible remote code execution via client update functionality.
POC
Reference
- https://github.com/geffner/CVE-2020-8289/blob/master/README.md
- https://github.com/geffner/CVE-2020-8289/blob/master/README.md
- https://youtu.be/W0THXbcX5V8
- https://youtu.be/W0THXbcX5V8
Github
- https://github.com/ARPSyndicate/cvemon
- https://github.com/NetW0rK1le3r/awesome-hacking-lists
- https://github.com/developer3000S/PoC-in-GitHub
- https://github.com/geffner/CVE-2020-8289
- https://github.com/hectorgie/PoC-in-GitHub
- https://github.com/nomi-sec/PoC-in-GitHub
- https://github.com/readloud/Awesome-Stars
- https://github.com/soosmile/POC