Alireza Gharib Blog

Arbitrary command execution through gitRepo volume Go to Source

VM images built with Image Builder with some providers use default credentials during builds Go to Source

VM images built with Image Builder and Proxmox provider use default credentials Go to Source

Ingress-nginx Annotation Validation Bypass Go to Source

Incorrect permissions on Windows containers logs Go to Source

azure-file-csi-driver discloses service account tokens in logs Go to Source

Bypassing mountable secrets policy imposed by the ServiceAccount admission plugin Go to Source

Insufficient input sanitization in in-tree storage plugin leads to privilege escalation on Windows nodes Go to Source

Code injection via nginx.ingress.kubernetes.io/permanent-redirect annotation Go to Source

Ingress nginx annotation injection causes arbitrary command execution Go to Source