【Azbuka Vkusa 】 未经授权访问 https://hackerone.com/reports/963161
【Azbuka Vkusa 】重定向(基于 DOM) https://hackerone.com/reports/958864
从盲打 SSRF漏洞到发现一个 RCE https://notifybugme.medium.com/chaining-an-blind-ssrf-bug-to-get-an-rce-92c09de3c0ba
我如何能够在 Facebook 上显示几乎任何页面的页面管理员 https://medium.com/pentesternepal/how-i-was-able-to-reveal-page-admin-of-almost-any-page-on-facebook-5a8d68253e0c
发现新的 DarkHotel APT 攻击链 https://www.zscaler.com/blogs/security-research/new-darkhotel-apt-attack-chain-identified
Lenovo ImController 本地权限提升(CVE-2021-3922、CVE-2021-3969) https://research.nccgroup.com/2021/12/15/technical-advisory-lenovo-imcontroller-local-privilege-escalation-cve-2021-3922-cve-2021-3969/
