writeups.xyz / Aethlios (@AethliosIK)

Title	Vulnerabilities	Programs	Authors
Multi-sandwich attack with MongoDB Object ID or the scenario for real-time monitoring of web application invitations: a new use case for the sandwich attack	Sandwich Attack	Undisclosed	Aethlios (@AethliosIK)
Unsecure time-based secret and Sandwich Attack - Analysis of my research and release of the “Reset Tolkien” tool	Sandwich Attack	Undisclosed	Aethlios (@AethliosIK)
Privileged account creation via Mass Assignment towards a full compromise using a Stored XSS	Stored XSS Mass Assignment Security Code Review	Pass Culture	Aethlios (@AethliosIK)
Stored XSS in the administrator’s panel due to misuse of MarkupSafe	Stored XSS	Pass Culture	Aethlios (@AethliosIK)

Page 1 of 1