Hackers Exploited KnowledgeDeliver Zero-Day for Web Shell Deployment
Source: Oodaloop
Published:
<p>Attackers exploited a zero‑day in the KnowledgeDeliver LMS caused by hardcoded ASP.NET machineKey values shared across installations. With these keys, threat actors performed ViewState deserialization attacks to achieve remote code execution. They deployed Godzilla web shells and ultimately insta