CyberArk EPM Privilege Escalation Vulnerability – CVE-2018-13052

Hi everybody, today I just want to talk about CyberArk EPM Privilege Escalation vulnerability (CVE-2018-13052). Actually CyberArk made awesome product – at least in theoretically -. Companies can arrange privileges from one single console. It has a lot of options to arrange privileges. For example, you can set a specific application to elevate but at the same…


CyberArk EPM file block bypass – CVE-2018-14894

Hi folks! I found an interesting vulnerability on CyberArk Endpoint Privilege Manager. CyberArk EPM file block bypass (CVE-2018-14894) is very easy -even you have slave privileges-.CyberArk EPM aims to manage privileges from one hand and prevent any harm with admin privileges. How does CyberArk EPM work? If user needs admin privileges, CyberArk gives the admin token to…


Fronter XSS – 3 XSS in 1 Blogpost

Today I want to write about Fronter and Fronter XSS Vulnerabilies. Fronter is a learning platform from leading ICT provider, itslearning. Based on Nordic educational models, Fronter is a comprehensive teaching and learning solution used in schools and universities worldwide. As part of the itslearning portfolio, the Fronter solution has a full range of available…


-------------------------------------------------------------------------------------------------------------------------Mustafa Kemal Can-------------------------------------------------------------------------------------------------------------------------