Latest Insights

The June 2026 Security Update Review

June 09, 2026
Dustin Childs

Read Full Article
Crafting a Full Exploit RCE from a Crash in Autodesk Revit RFA File Parsing
October 08, 2025

Crafting a Full Exploit RCE from a Crash in Autodesk Revit RFA File Parsing

Abusing Arbitrary File Deletes to Escalate Privilege and Other Great Tricks (Archive)
September 03, 2024

Abusing Arbitrary File Deletes to Escalate Privilege and Other Great Tricks (Archive)

CVE-2024-38213: Copy2Pwn Exploit Evades Windows Web Protections
August 15, 2024

CVE-2024-38213: Copy2Pwn Exploit Evades Windows Web Protections

Getting Unauthenticated Remote Code Execution on the Logsign Unified SecOps Platform
July 01, 2024

Getting Unauthenticated Remote Code Execution on the Logsign Unified SecOps Platform

CVE-2023-35150: Arbitrary Code Injection in XWiki.org XWiki
August 23, 2023

CVE-2023-35150: Arbitrary Code Injection in XWiki.org XWiki

Exploiting the Sonos One Speaker Three Different Ways: A Pwn2Own Toronto Highlight
May 25, 2023

Exploiting the Sonos One Speaker Three Different Ways: A Pwn2Own Toronto Highlight

CVE-2023-20869/20870: Exploiting VMware Workstation at Pwn2Own Vancouver
May 18, 2023

CVE-2023-20869/20870: Exploiting VMware Workstation at Pwn2Own Vancouver

TP-Link WAN-side Vulnerability CVE-2023-1389 Added to the Mirai Botnet Arsenal
April 24, 2023

TP-Link WAN-side Vulnerability CVE-2023-1389 Added to the Mirai Botnet Arsenal

CVE-2022-3236: Sophos Firewall User Portal and Web Admin Code Injection
October 19, 2022

CVE-2022-3236: Sophos Firewall User Portal and Web Admin Code Injection

Riding the InfoRail to Exploit Ivanti Avalanche
July 19, 2022

Riding the InfoRail to Exploit Ivanti Avalanche