Popping a shell on the Oculus developer portal

Vulnerabilities in Homepage Dashboard

Exploiting authorization by nonce in WordPress plugins

SSD Advisory – XenForo RCE Via CSRF

Vulnerabilities in Open Source C2 Frameworks

[2,500$ Bug Bounty Write-Up] Remote Code Execution (RCE) via unclaimed Node package