Deserialization attack on YAML and reversing web assembly
Aug 06, 2021
·
9 min readFriendly PHP insecure deserialization attack and race condition
Jun 14, 2021
·
11 min readChaining XSS, SSRF, and deserialization vulnerabilities to get RCE
Jun 09, 2021
·
13 min readExploiting an insecure deserialization on Jackson library and how to mitigate it
May 09, 2021
·
9 min readLFI to RCE on GitLab 12.8.1~12.9.0
Apr 17, 2021
·
11 min read