Posts

Finding bugs to trigger Unauthenticated Command Injection in a NETGEAR router (PSV-2022–0044)

Finding an unseen SQL Injection by bypassing escape functions in mysqljs/mysql

CVE-2021–20226 a reference counting bug which leads to local privilege escalation in io_uring

CVE-2020–15702 Race Condition vulnerability in handling of PID by apport