Mainly for convenient copy/paste when writing reports.

This vulnerability was described publicly as an SQL injection, but in reality it is a template injection.

Atlassian Confluence contains a template injection vulnerability. An attacker can craft a malicious request to trigger template injection and achieve remote command execution.

The authentication bypass in the previously disclosed OFBiz issue was not fully fixed, which led to this vulnerability. By reaching the Groovy execution path from an external entry point and bypassing the blacklist, an attacker can achieve RCE.

There have been several ActiveMQ vulnerabilities recently. I saw others already analyzed them, so I didn’t dig too deeply at the time. Then an older issue from last year got re-surfaced, so I wrote these notes in one go (also because I hadn’t systematically studied ActiveMQ, so this was a good excuse).

I DOC VIEW is an online document viewer. Due to improper handling in the /html/2word endpoint, an attacker can read arbitrary files remotely. By abusing this endpoint to make the server download and parse a malicious JSP, this can be escalated to RCE.

JWT was introduced to avoid frequent database lookups for maintaining HTTP session state. Unlike Redis, JWT stores most (or all) session information inside the token itself. By parsing the JWT, the application can retrieve session state directly — but this also introduces security risks.