add some new scans
dorkerdevil opened this issue · 2 comments
dorkerdevil commented
add detection of
jexl injection
and Hubl Injection
chriselgee commented
Do you have sample test code and vulnerable images? I'm not personally familiar with either tactic.
dorkerdevil commented
i have some articles on it which have some info
https://appcheck-ng.com/advisory-remote-code-execution-traccar-server/
jexl- https://blog.csdn.net/aqzwss/article/details/70225883
https://twitter.com/pyn3rd/status/1097519440089047041
hubl injection
https://www.betterhacker.com/2018/12/rce-in-hubspot-with-el-injection-in-hubl.html