U.S. Dept Of Defense: Remote Code Execution in ██████

2019-10-10T05:47:52
ID H1:710864
Type hackerone
Reporter s3cr3tsdn
Modified 2020-05-11T16:36:39

Description

The vulnerability you reported has been resolved and this report is now closed. If you have any further questions or disagree that the report is resolved, please let us know.

Thank you for your time and effort to improve the security of the DoD information network.

Thanks @s3cr3tsdn for reporting RCE in a DoD website. Issue has been resolved and report placed into a disclosed summary status as you requested.


Hi @everyone, i'm going to make a detailed writeup for this report disclosing a new tool for mass exploitation of these bugs starting from one google dork, you will find it on @sud0root medium blog, Best Wishes and happy hunting, @S3cr3tSDN.