- How an obscure PHP footgun led to RCE in Craft CMS https://www.assetnote.io/resources/research/how-an-obscure-php-footgun-led-to-rce-in-craft-cms 2 comments netsec
- DNS poisoning in 30M domains caused by the Great Firewall https://www.assetnote.io/resources/research/insecurity-through-censorship-vulnerabilities-caused-by-the-great-firewall 8 comments netsec
- Chaining Three Bugs to Access All Your ServiceNow Data https://www.assetnote.io/resources/research/chaining-three-bugs-to-access-all-your-servicenow-data 3 comments netsec
- Digging for SSRF in NextJS apps https://www.assetnote.io/resources/research/digging-for-ssrf-in-nextjs-apps 3 comments netsec
- Two Bytes is Plenty: FortiGate RCE with CVE-2024-21762 https://www.assetnote.io/resources/research/two-bytes-is-plenty-fortigate-rce-with-cve-2024-21762 6 comments netsec
- Citrix Bleed: Leaking Session Tokens with CVE-2023-4966 https://www.assetnote.io/resources/research/citrix-bleed-leaking-session-tokens-with-cve-2023-4966 2 comments netsec