Writeup for CVE-2018-1160 pwnable.tw CTF. This is a write out of bounds heap vulnerability, which required an ASLR bypass.

N-Day research for CVE-2024-7399 - a path traversal vulnerability in Samsung MagicINFO Server 9, that can lead to remote code execution as nt authority\system.

Explains how to gain Remote Code Execution (RCE) on modern WordPress instances using administrator privileges by creating and installing a custom plugin that triggers a reverse shell. Also offers a ready-to-use plug-and-play plugin if you don't want to create one from scratch.

The writeup for finding a POC for CVE-2024-20419, a CVSSv3 10.0 vulnerability in Cisco Smart Software Manager On-Prem.

A wierd glitch when refreshing the page of a webapp made me look into its potential cause. The end result? A really serious Authentication Bypass on the app's API.

CI workflows often give the user the possibility to execute commands inside containers in one war or another. However, with great power comes great responsability, and if the code execution is not properly isolated it could be used in malitious ways.