Write-ups and Disclosures

Topic	Replies	Views	Activity
About the Write-ups and Disclosures category	0	397	February 5, 2021
Windows LFI > RFI Zero Day	0	96	October 25, 2022
Windows 10 -11 Injection Zero Day	0	119	October 25, 2022
Zero Click PoC with One Drive Uri Callback	0	51	October 24, 2022
A New Jailbreak for John Deere Tractors Rides the Right-to-Repair Wave	0	43	August 26, 2022
Hacker Sick Codes says cybersecurity in agtech is no game after viral John Deere tractor hack	0	44	August 26, 2022
CVE-2021-38701 - Avigilon Multiple IP Camera Stored Cross-Site Scripting	0	440	October 23, 2021
Multiple Severe Vulnerabilities in MonkeyType.Com \| Chat Based XSS, Auth bypass, User Spoofing	0	566	September 9, 2021
Universal “netmask” npm package, used by 270,000+ projects, vulnerable to octal input data: server-side request forgery, remote file inclusion, local file inclusion, and more (CVE-2021-28918)	0	790	March 29, 2021
CVE-2021-35956 AKCP sensorProbe - 'Multiple' Cross Site Scripting (XSS)	3	758	August 28, 2021
CVE-2021-22929 - Brave Browser 1.27 and below permanently logs the server connection time for all v2 tor domains to ~/.config/BraveSoftware /Brave-Browser/tor/data/tor.log	1	360	August 17, 2021
New report on coordinated vulnerability disclosure in Canada	0	412	July 19, 2021
Recent macOS Threat Research I've been looking at	1	419	June 1, 2021
Researchers hacked Indian govt sites via exposed git and env files	1	425	May 19, 2021
Ubuntu Privilege Escalation: Exploiting Crash Handlers by Itai Greenhut from Aleph Security	0	380	February 16, 2021
CVE-2020-27388: YOURLS 1.5 - 1.7.10, Multiple Stored Cross Site Scripting (XSS) Vulnerabilities in Admin Panel	0	811	February 5, 2021
Arpspoof vs Kubernetes	0	722	November 6, 2020
How I found a TOR vulnerability in Brave Browser, reported it, watched it get patched, got a CVE (CVE-2020-8276), and a small bounty all in one working day	0	6679	November 9, 2020