$ ls -la ~/blog

blog

RSS

// 227 writeups · 50 vulns · 8 articles · mostrando 285

--quick
--type
easy144-coolpg.mdhmvSQL Injection (UNION)Credential reuse via SSH07-07-2026 proyectossudo-aprende: el laboratorio para aprender Linux, Git y ciberseguridad desde la terminallanzamientolinuxgit27-06-2026 webFFmpeg HLS Local File Read (CVE-2016-1897)FFmpegSSRFLFI20-06-2026 rcePHP CGI Argument Injection (CVE-2024-4577)PHPRCEWindows20-06-2026 miscZipCrypto Known-Plaintext Attack (bkcrack)cryptozippassword-cracking20-06-2026 miscActive Directory (Windows AD)WindowsActiveDirectorypentesting19-06-2026 rceApache Path Traversal RCE (CVE-2021-41773)Apachepath-traversalRCE18-06-2026 rceCUPS RCE (evil-cups CVE-2024-47177)CUPSIPPRCE18-06-2026 miscDNS Zone Transfer (AXFR)DNSAXFRenumeration18-06-2026 miscDebian OpenSSL Predictable PRNG (CVE-2008-0166)OpenSSLSSHcrypto18-06-2026 privescDirty COW (CVE-2016-5195)privesckernelLinux18-06-2026 privescDirty Pipe (CVE-2022-0847)privesckernelLinux18-06-2026 webExposed .git Repositorygitwebinformation-disclosure18-06-2026 rceJenkins Script Console RCEJenkinsGroovyRCE18-06-2026 privescLinux Capabilities PrivescprivesccapabilitiesLinux18-06-2026 privescLooney Tunables (CVE-2023-4911)privescglibcLinux18-06-2026 rceMS08-067 (CVE-2008-4250)WindowsSMBRCE18-06-2026 rceMS17-010 EternalBlue (CVE-2017-0143)WindowsSMBRCE18-06-2026 privescNFS no_root_squash PrivescprivescNFSLinux18-06-2026 privescPATH HijackingprivescPATHLinux18-06-2026 rcePHP 8.1.0-dev Backdoor (User-Agentt RCE)PHPbackdoorRCE18-06-2026 webPHP Filter Chains RCEPHPLFIRCE18-06-2026 privescPrivileged Groups PrivescprivescgroupsLinux18-06-2026 privescPwnKit pkexec (CVE-2021-4034)privescpolkitpkexec18-06-2026 webRedis Unauthorized Access RCERedisRCEwebshell18-06-2026 rceShellshock (CVE-2014-6271)ShellshockRCEcgi-bin18-06-2026 privescTar Wildcard Injectionprivesctarwildcard18-06-2026 rceTomcat Manager WAR Deploy RCETomcatWARRCE18-06-2026 rceUnrealIRCd Backdoor (CVE-2010-2075)UnrealIRCdIRCRCE18-06-2026 privescWritable Critical Files PrivescprivescLinuxpasswd18-06-2026 miscrsync Anonymous AccessrsyncenumerationLinux18-06-2026 easy143-hunter.mdhmvHTTP method change reveals secret headerCredential reuse (robots.txt)29-11-2025 miscSMB EnumSMBenum12-11-2025 medium014-homelab.mdhmvX-Forwarded-For access bypassOpenVPN key passphrase brute force09-11-2025 low35-build.mdvulnyxJenkins default credentialsJenkins Script Console RCE (Groovy)09-11-2025 webXST (Cross-Site Tracing)webXST09-11-2025 webForward headersHTTPspoofingweb09-11-2025 low31-lower4.mdvulnyxident user disclosureWeak SSH Password08-11-2025 low32-lower5.mdvulnyxLocal File Inclusion (LFI)Apache log poisoning (RCE)08-11-2025 low33-lower6.mdvulnyxRedis weak password (brute force)Credential reuse + SSH brute force08-11-2025