Archives
- 12 Sep (Vietnamese) CVE-2019-18935, Remote Code Execution via Insecure Deserialization in Telerik UI
- 02 Sep (Vietnamese) CVE‑2020‑29396, Remote Code Execution in Odoo via Unsafe Template Globals and Jinja2 Sandbox Bypass
- 27 Aug (English) ACS EDU Practial Test Writeup
- 24 Aug (Vietnamese) PTIT CTF 2025 Qualified Round Write-up
- 20 Aug (Vietnamese) CVE-2022-29464, WSO2 unrestricted arbitrary file upload leads to RCE
- 17 Aug (English) scriptCTF 2025 - Python Jail
- 30 Jul (Vietnamese) Java deserialize, debug gadget chain URLDNS
- 25 Jul (Vietnamese) PHP Deserialize challenge write-up
- 23 Jul (Vietnamese) PHP deserialize, all-in-one what we need to know
- 08 Jun (Vietnamese) CVE-2024-9264, Grafana Arbitrary File Read and Remote Code Execution via SQL Expressions
- 11 May (English) Python-Flask file upload vulns
- 03 Mar (English) PWNME CTF 2025 - Hackthebot1 Write-up