HTB Writeup – Heal
Posted on 2024-12-15
RCEs for LimeSurvey & HashiCorp Consul
linux
HTB Writeup – LinkVortex
Posted on 2024-12-08
Exploit Ghost CMS 5.58.0 CVE-2023-40028 after a Git leak
HTB Writeup – Unrested
Posted on 2024-12-07
Zabbix CVE-2024-36467 (JSON RPC IDOR) & CVE-2024-42327 (SQLi)
HTB Writeup – Chemistry
Posted on 2024-10-21
Deserialization for pymatgen & Directory Traversal on aiohttp
HTB Writeup – Yummy
Posted on 2024-10-06
LFI, JWT Forgery, SQLi, Crontab abuse, Mercurial hook, Rsync privesc
HTB Writeup – Trickster
Posted on 2024-09-22
XSS + RCE for PrestaShop & exploit SSTI on ChangeDetection.io
HTB Writeup – Caption
Posted on 2024-09-15
Exploit H2 Database for Java web app & abuse Apache Thrift
HTB Writeup – Sightless
Posted on 2024-09-09
SQLPad RCE vulnerability & Froxlor exploit via Chrome remote debugging