Skip to content
View mbadanoiu's full-sized avatar
☠️
Hackin'
☠️
Hackin'
13 followers · 4 following
Block or Report

Block or report mbadanoiu

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
mbadanoiu/README.md

Welcome to the Weekend Retreat of Matei "Mal" Badanoiu

This GitHub is used to post my CVEs and Security Research during my free time/weekends.

All materials present in this GitHub profile are meant for security research and etichal hacking.

I do not condone malicious behavoiur such as hacking systems without being authorized to do so, ransomare, or any unethical use of my work.

Whoami?

I am:

  • Matei "Mal" Badanoiu
  • Hacker
  • Pentester by day
  • Security researcher by night
  • Owner of +100 responsibly disclosed 0-days/CVEs

Additional Information

If you find any spelling/grammatical errors and/or other mistakes please open an issue in the respective repo. Thanks.

Q: Why do you write your CVEs as PDFs?

A: I use PDFs to responsably disclose the identified vulnerabilities to the respective software vendors. As I want to eventually post all +100 0-days, I needed a way to quickly modify and post them here without reworking them from scratch (rewriting them as Markdown is too labor intensive).

Q: Why do you (usually) not upload scripts and proof of concept code directly into repositories?

A: I do this because I want:

  • People to read the PDF and understand the mechanisms and inner workings behind the exploit
  • To prevent script kiddies from easily git cloning/copy-pasting and running the exploits without understanding what they do

Pinned

  1. MAL-001 MAL-001 Public

    MAL-001: FreeMarker Server-Side Template Injection in Liferay Portal

  2. CVE-2023-49964 CVE-2023-49964 Public

    CVE-2023-49964: FreeMarker Server-Side Template Injection in Alfresco

    6 3

  3. CVE-2023-34468 CVE-2023-34468 Public

    CVE-2023-34468: Remote Code Execution via DB Components in Apache NiFi

    4

  4. CVE-2023-34212 CVE-2023-34212 Public

    CVE-2023-34212: Java Deserialization via JNDI Components in Apache NiFi

    3 2

  5. CVE-2022-21392 CVE-2022-21392 Public

    CVE-2022-21392: Local Privilege Escalation via NMR SUID in Oracle Enterprise Manager

    3 1

  6. MAGNOLIA-8348 MAGNOLIA-8348 Public

    MAGNOLIA-8348: FreeMarker Restriction Bypass 3 in Magnolia CMS