When MCP Meets OAuth: Common Pitfalls Leading to One-Click Account Takeover Posted on 2026-01-29 | In AI Words count in article: 3,288 | Reading time ≈ 21 Read more »
CVE-2025-34291: Critical Account Takeover and RCE Vulnerability in the Langflow AI Agent & Workflow Platform Posted on 2025-12-05 | In SaaS Words count in article: 2,562 | Reading time ≈ 16 Read more »
From DNS Takeover to Org Admin: Secondary Attacks on Atlassian Cloud Posted on 2025-07-31 | In SaaS Words count in article: 2,901 | Reading time ≈ 18 Read more »
Behind the Shield: Cracking the Limits of Okta FastPass Posted on 2025-05-05 | In SaaS Words count in article: 3,317 | Reading time ≈ 21 Read more »
Demystifying Okta AiTM Posted on 2025-03-20 | In SaaS Words count in article: 1,992 | Reading time ≈ 12 Read more »
聊聊 Synology NAS Audio Station 套件未授权 RCE 调试及 EXP 构造 Posted on 2021-06-10 | In IoT Words count in article: 1,230 | Reading time ≈ 5 Read more »
Netgear Nighthawk R8300 upnpd PreAuth RCE 分析与复现 Posted on 2020-08-24 | In IoT Words count in article: 3,748 | Reading time ≈ 18 Read more »
Android 8.0-9.0 Bluetooth Zero-Click RCE – BlueFrag 漏洞分析及利用(CVE-2020-0022) Posted on 2020-04-28 | In Android Words count in article: 3,355 | Reading time ≈ 21 Read more »
Girl CTF Course Project 1 Write-up Posted on 2019-10-29 | In CTF Words count in article: 21,619 | Reading time ≈ 135 Read more »
Vim/Neovim 基于 modeline 的多个任意代码执行漏洞分析(CVE-2002-1377、CVE-2016-1248、CVE-2019-12735) Posted on 2019-06-11 | In 漏洞分析 Words count in article: 1,338 | Reading time ≈ 5 Read more »
