Rhino Security Labs

Strategic & Technical Blog

Referral Beware, Your Rewards are Mine (Part 1)

Whit Taylor
August 27, 2025

Referral rewards programs are nearly ubiquitous today, from consumer tech to SaaS companies, but are rarely given much security oversight. In this blog post we’ll dig into the common technical implementations of rewards programs on…

Multiple CVEs in Infoblox NetMRI: RCE, Auth Bypass, SQLi, and File Read Vulnerabilities  

CVE-2025-26147: Authenticated RCE In Denodo Scheduler 

New Pacu Module:
Secret Enumeration in Elastic Beanstalk

Tyler Ramsbey

During a recent AWS penetration test, the client was using a service I do not see very often: AWS Elastic Beanstalk (EBN). This is a service that makes it easy to deploy web applications without managing the underlying infrastructure. The…