Fatih's Blog
Random things about computer security
HOME
CATEGORIES
TAGS
ARCHIVES
ADVISORIES
HALL OF FAMES
Home
Archives
Archives
Cancel
Archives
2026
04
Feb
n8n RCE(s): A Tale of 4 Acts (CVE-2025-68613 & CVE-2026-25049)
04
Feb
n8n: OS Command Injection in Git Node - CVE-2026-25053
2025
18
Dec
Crashing Python http.client - CVE-2025-13836
2024
01
Mar
Missing IP Address Control in isPublic() Function Leads to SSRF Bypass PoC
2021
12
Dec
Deserialization of Untrusted Data in pytorch-lightning
2020
10
Dec
Group Office CRM | Stored XSS via SVG File
10
Dec
Group Office CRM | SSRF
06
Oct
Sentrifugo 3.2 | SQLi [employeeNumId] parameter | CVE-2020-26805
06
Oct
Sentrifugo 3.2 | RCE [Authenticated] (assets) | CVE-2020-26803
06
Oct
Sentrifugo 3.2 | RCE [Authenticated] (announcements) | CVE-2020-26804
30
Sep
CMSUno 1.6.2 | RCE [Authenticated] (password.php) | CVE-2020-25557
30
Sep
CMSUno 1.6.2 | RCE [Authenticated] (config.php) | CVE-2020-25538
09
Aug
The First CrackMe of The Series - CrackMe1
09
Aug
Starting The CrackMe Series - Why?
04
Jun
GOG Galaxy Desktop App | Local Privilege Escalation | CVE-2020-11827
14
Apr
Virtualbox Local DOS Vulnerability | CVE-2020-2909
23
Feb
Memono | Insecure Data Storage [IOS] | CVE-2020-11826
15
Jan
Rukovoditel | SQL Injection reports_id (POST) | CVE-2020-11816
15
Jan
Rukovoditel | SQL Injection filters[1][value] (POST) | CVE-2020-11812
15
Jan
Rukovoditel | SQL Injection filters[0][value] (POST) | CVE-2020-11812
15
Jan
Rukovoditel | SQL Injection [entities_id] | CVE-2020-11820
14
Jan
Rukovoditel | RCE | Local File Inclusion | CVE-2020-11819
14
Jan
Rukovoditel - Maintenance Mode Configuration | RCE - CVE-2020-11817
14
Jan
Rukovoditel | CSRF Bypass -> Account Takeover - CVE-2020-11818
14
Jan
Web-Based Project Management Software | RCE - CVE-2020-11811
04
Jan
Rukovoditel - Login Page Configuration | RCE - CVE-2020-11815
2019
24
Dec
Clear Text Password - Netis DL4323 | CVE-2019-20074
Recent Update
n8n: OS Command Injection in Git Node - CVE-2026-25053
n8n RCE(s): A Tale of 4 Acts (CVE-2025-68613 & CVE-2026-25049)
Missing IP Address Control in isPublic() Function Leads to SSRF Bypass PoC
The First CrackMe of The Series - CrackMe1
Trending Tags
vulnerability research
reverse engineering
Trending Tags
vulnerability research
reverse engineering
