CODE WHITE GmbHDec 2, 2022
If you're using #pgAdmin Server < 6.17 on Windows, patch the unauth'ed RCE #CVE-2022-4223 that our @frycos found & reported (without being mentioned)
Show threadCODE WHITE GmbH
Write-up: https://frycos.github.io/vulns4free/2022/12/02/rce-in-20-minutes.html
Pre-Auth RCE with CodeQL in Under 20 Minutes

This write-up won’t be an intense discussion on security code review techniques this time. We’ll simply let do all the hard work by a third party: CodeQL.

Frycos Security Diary
Dec 2, 2022 at 2:50pmWeb
Show threadc1sc0Dec 3, 2022
@codewhitesec good write up an very nice finding. Also really good approach.
Show threadsuperhero1 Dec 5, 2022
@c1sc0 @codewhitesec looking forward to your first one 🔥