Blog

9/12/2023

Blog: Debunking an RCE which CVSSv3 is 10.0 CVE-2020-35489

9/12/2023

Blog: OmniSpace, from automated 0day XSS to RCE

9/5/2023

Blog: CVE-2023-4634 - Tricky Unauthenticated RCE on Wordpress Media Library Assistant Plugin using a good old Imagick

6/14/2023

Blog: Fortigate CVE-2023-27997 (XORtigate) in the eyes of the owl

5/19/2023

Blog: Apple, vulnerabilities actively exploited

3/30/2023

Blog: The arbitrary Top of the past year 2022

1/29/2023

Blog: KeePass, ultra-mega-giga critical vulnerability 🤦‍♂️

12/23/2022

Blog: Third LastPass Hack

10/3/2022

Blog: Critical Vulnerabilities on Exchange #ProxyNotShell

9/20/2022

Blog: Microsoft Security Bulletin of September 2022

6/16/2022

Blog: Critical Vulnerability on Atlassian Confluence / CVE-2022-26134

3/18/2022

Blog: The Arbitrary Top of the Year 2021

3/17/2022

Blog: Log4j or Log4Shell, the javapocalypse (CVE-2021-44228 and others 😥)

3/16/2022

Blog: Codecov hacking

4/5/2021

Blog: 533 million Facebook accounts leaked