thesmartshadow

## README.md

      
              3 files
            
          
              0 forks
            
          
                0 comments
              
            
              0 stars
            
          
                thesmartshadow
                / README.md
            
            
              Created
              September 4, 2025 01:42
            
              
                PoC for Incorrect Access Control in @digitalocean/do-markdownit (≤1.16.1) — includes console and web demo exploits.
              
          
    PoC: Incorrect Access Control in @digitalocean/do-markdownit

Summary

This repository demonstrates an Incorrect Access Control vulnerability in the
@digitalocean/do-markdownit library (≤ 1.16.1).
Both the callout and fence_environment plugins expect allowedClasses and
allowedEnvironments to be arrays of strings. If mistakenly provided as a string,
the library applies .includes directly, resulting in substring matching instead
of exact array comparison.

  
## CVE-2025-59716-Unauthenticated guest-identity exposure via invitation endpoint (zero-click).md

      
              1 file
            
          
              0 forks
            
          
                0 comments
              
            
              0 stars
            
          
                thesmartshadow
                / CVE-2025-59716-Unauthenticated guest-identity exposure via invitation endpoint (zero-click).md
            
            
              Last active
              November 14, 2025 15:56
            
          
    CVE-2025-59716 — ownCloud Guests pending-user enumeration via registration endpoint

Type: Information Disclosure (User Enumeration)

CWE: CWE-200 (Exposure of Sensitive Information) / CWE-203 (Observable Discrepancy)

Affected component: ownCloud Guests app

Tested on: ownCloud Server 10.11, Guests app v0.12.4, Apache HTTPD

Researcher: Ali Firas (@thesmartshadow)

Date: 2025-11-03