Inside PostHog: SSRF, ClickHouse SQL Escape and Default Postgres Creds to RCE

Published 10 hours ago

Source: hnrss.org

Article URL: https://mdisec.com/inside-posthog-how-ssrf-a-clickhouse-sql-escaping-0day-and-default-postgresql-credentials-formed-an-rce-chain-zdi-25-099-zdi-25-097-zdi-25-096/

Comments URL: https://news.ycombinator.com/item?id=46305321

Points: 88

# Comments: 25

Read Original Article

Related Articles from hnrss.org

SF lawmakers vote to create reparations fund $5M per Black resident

More than half of researchers now use AI for peer review, often against guidance

'Ghost jobs' are on the rise – and so are calls to ban them

Mozilla's New CEO Confirms Firefox Will Become an "AI Browser"

Judge hints Vizio TV buyers may have rights to source code licensed under GPL

Germany: Amazon is not allowed to force customers to watch ads on Prime Video