简讯:KeePass through 2.53 存在一个漏洞,该漏洞允许对具有 XML 配置文件写入权限的攻击者通过添加导出触发器来获取明文密码。
漏洞编号 [CVE-2023-24055]
相关研究
PoC
部分资讯
漏洞编号 [CVE-2023-24055]
相关研究
PoC
部分资讯
harmj0y
KeeThief – A Case Study in Attacking KeePass Part 2
Note: this post and code were co-written with my fellow ATD workmate Lee Christensen (@tifkin_) who developed several of the interesting components of the project. The other week I published the &#…
