Tag - cve
Vulnerabilities in Cordaware bestinformed
A write-up of CVE-2025-0422, CVE-2025-0423, CVE-2025-0424, and CVE-2025-0425
Auditing Atlassian Plugins, 53 0-Days Later
Explaining the process and tooling behind our way of auditing Atlassian plugins, 53 0Days later.
Collabora Online Stored XSS (CVE-2024-29182)
A Writeup for a Stored XSS we found in Collabora Online - CVE-2024-29182
Auditing WordPress Plugins
A summarized post about security research of WordPress plugins and the explorational audit spree which followed
OctoberCMS Authenticated RCE (CVE-2022-21705)
Join us in the discovery and exploitation of an authenticated remote code execution vulnerability in OctoberCMS
OctoberCMS Authenticated RCE (CVE-2021-32649)
Follow along in the discovery and exploitation of an authenticated remote code execution vulnerability in OctoberCMS
Plone Authenticated RCE (CVE-2021-32633)
Join the journey into Plone CMS that lead us to discover an authenticated RCE vulnerability