Inside PostHog: SSRF, ClickHouse SQL Escape and Default Postgres Creds to RCE

Published 21 hours ago

Source: hnrss.org

Article URL: https://mdisec.com/inside-posthog-how-ssrf-a-clickhouse-sql-escaping-0day-and-default-postgresql-credentials-formed-an-rce-chain-zdi-25-099-zdi-25-097-zdi-25-096/

Comments URL: https://news.ycombinator.com/item?id=46305321

Points: 95

# Comments: 27

Read Original Article

Related Articles from hnrss.org

Military Standard on Software Control Levels

Agent Skills is now an open standard

Valve Is Running Apple's Playbook in Reverse

Beginning January 2026, all ACM publications will be made open access

Launch HN: Pulse (YC S24) – Production-grade unstructured document extraction

Heart and Kidney Diseases and Type 2 Diabetes May Be One Ailment