Day[0]

281 Épisodes

1. [bounty] XSS for NFTs, a VMWare Workspace ONE UEM SSRF, and GitLab CI Container Escape

   Publié: 03/05/2022
2. [binary] Getting into Vulnerability Research and a FUSE use-after-free

   Publié: 28/04/2022
3. [bounty] A Struts RCE, Broken Java ECDSA (Psychic Signatures) and a Bad Log4Shell Fix

   Publié: 26/04/2022
4. [binary] Another iOS Bug and Edge Chakra Exploitation

   Publié: 21/04/2022
5. [bounty] Taking Over an Internal AWS Service and an Interesting XSS Vector

   Publié: 19/04/2022
6. [binary] A subtle iOS parsing bug and a PHP use-after-free

   Publié: 14/04/2022
7. [bounty] A Double-Edged SSRF, Pritunl VPN LPE, and a NodeBB Vuln

   Publié: 12/04/2022
8. [binary] FORCEDENTRY Sandbox Escape and NetFilter Bugs

   Publié: 07/04/2022
9. [bounty] Spring4Shell, PEAR Bugs, and GitLab Hardcoded Passwords

   Publié: 05/04/2022
10. [binary] Pwning WD NAS, NetGear Routers, and Overflowing Kernel Pages

    Publié: 31/03/2022
11. [bounty] GitLab Arbitrary File Read and Bypassing PHP's filter_var

    Publié: 29/03/2022
12. [binary] Chrome Heap OOB Access and TLStorm

    Publié: 24/03/2022
13. [bounty] DOMPDF XSS to RCE, Chrome Leaking Envrionment Vars, and cr8escape

    Publié: 22/03/2022
14. [binary] A Windows UAF, Branch Prediction Bugs, and an io_uring Exploit

    Publié: 17/03/2022
15. [bounty] Pascom RCE, AutoWarp, and a GKE Container Escape

    Publié: 15/03/2022
16. [binary] Dirty Pipe and Analyzing Memory Tagging

    Publié: 10/03/2022
17. [bounty] Facebook Exploits, pfSense RCE, and MySQLjs SQLi

    Publié: 08/03/2022
18. [binary] ImageGear JPEG Vulns, NetFilter, and a LibCurl Memory Disclosure

    Publié: 03/03/2022
19. [bounty] DynamicWeb RCE, VMWare Bugs, and Exploiting GitHub Actions

    Publié: 01/03/2022
20. [binary] Zynq-7000 Secure Boot Bypass and Compiler-Created Bugs

    Publié: 24/02/2022