Very creative way to turn Prototype Pollution into RCE in kibana – Bug Bounty Reports Explained
Blogpost:
https://research.securitum.com/prototype-pollution-rce-kibana-cve-2019-7609/
Researcher’s twitter:
https://twitter.com/SecurityMB
Follow me on twitter:
https://twitter.com/gregxsunday
Timestamps:
00:00 Intro
00:34 Prototype pollution
02:27 Vulnerability discovery
04:14 Exploitation
#rce #protoPollution
Add comment