Submit Blog

Sign up Sign in

Search Articles

Filter by Tag

Sort By

Popular Tags

Clickhouse Articles

Page 1 of 1 (1 article)

Inside PostHog: How SSRF, a ClickHouse SQL Escaping 0day, and Default PostgreSQL Credentials Formed an RCE Chain

12/18/2025 • EN

Inside PostHog: How SSRF, a ClickHouse SQL Escaping 0day, and Default PostgreSQL Credentials Formed an RCE Chain

Analysis of a complex RCE attack chain in PostHog exploiting SSRF, a ClickHouse SQL 0day, and default PostgreSQL credentials.

Clickhouse postgresql Rce sql injection Ssrf