May 10, 2023

Bypass IIS Authorisation with this One Weird Trick - Three RCEs and Two Auth Bypasses in Sitecore 9.3

Apr 30, 2023

Exploiting an Order of Operations Bug to Achieve RCE in Oracle Opera

Apr 30, 2023

Advisory: Oracle Opera Pre-Auth RCE (CVE-2023-21932)

Apr 26, 2023

Finding XSS in a million websites (cPanel CVE-2023-29489)

Apr 26, 2023

Advisory: Reflected Cross-Site Scripting in cPanel (CVE-2023-29489)

Feb 2, 2023

Pre-Auth RCE in Aspera Faspex: Case Guide for Auditing Ruby on Rails

Feb 1, 2023

RCE in Avaya Aura Device Services

Jan 24, 2023

Exploiting Hardcoded Keys to achieve RCE in Yellowfin BI

Oct 28, 2022

Exploiting Static Site Generators: When Static Is Not Actually Static

Sep 14, 2022

Breaking Bitbucket: Pre Auth Remote Command Execution (CVE-2022-36804)
Page 1 of 5