| Beyond the Limit: Expanding single-packet race condition with a first sequence sync for breaking the 65,535 byte limit |
|
|
|
| BatBadBut: You can't securely execute commands on Windows |
|
|
|
| Bypassing DOMPurify with good old XML |
|
|
|
| DOM-based race condition: racing in the browser for fun |
|
|
|
| Stealing GitHub staff's access token via GitHub Actions |
|
|
|
| Remote code execution in cdnjs of Cloudflare |
|
|
|
| Remote code execution in Homebrew by compromising the official Cask repository |
|
|
|
writeups.xyz
/
RyotaK (@Ryotkak)