2High fidelity check for Next.js/RSC RCE (CVE-2025-55182 and CVE-2025-66478) (opens in new tab)(slcyber.io)3infosecau6mo ago0Save
3Analyzing the Next.js Middleware Bypass (CVE-2025-29927) (opens in new tab)(slcyber.io)2infosecau1y ago0Save
5Exploiting Static Site Generators: When Static Is Not Static (opens in new tab)(blog.assetnote.io)21infosecau3y ago0Save
6Abusing functionality to exploit a super SSRF in Jira Server (CVE-2022-26135) (opens in new tab)(blog.assetnote.io)1infosecau3y ago0Save
7Cloudflare Pages, part 1: The fellowship of the secret (opens in new tab)(blog.assetnote.io)28infosecau4y ago2Save
8Hacking a Bank by Finding a 0day in DotCMS (opens in new tab)(blog.assetnote.io)3infosecau4y ago0Save
9Eliminating Dangling Elastic IP Takeovers with Ghostbuster (opens in new tab)(blog.assetnote.io)2infosecau4y ago0Save
10Turning Bad SSRF to Good SSRF: Websphere Portal (opens in new tab)(blog.assetnote.io)2infosecau4y ago0Save
12Taking over Uber accounts through voicemail (opens in new tab)(blog.assetnote.io)15infosecau4y ago5Save
14Attack of the clones: Git clients remote code execution (opens in new tab)(blog.blazeinfosec.com)5infosecau5y ago0Save
15Finding Hidden Files and Folders on IIS Using BigQuery (opens in new tab)(blog.assetnote.io)1infosecau5y ago0Save
