ZeroSec - Adventures In Information Security

Leveraging Expression Language Injection (EL Injection) for RCE

Expression Language injection or EL Injection for short is an attack vector I'd never heard of until recently. This post talks about leveraging EL for RCE....

Read Post

Andy Gill

Hunting in the Dark - Blind XXE

learning bugbounty

Before getting into the post, this isn't anything brand new or leet in the area...

CSV Injection -> Meterpreter on Pornhub

bugbounty bug

Andy Gill

CSV Injection Revisited - Making Things More Dangerous(and fun)

bugbounty csv injection

Andy Gill

Tag: injection

Leveraging Expression Language Injection (EL Injection) for RCE

Hunting in the Dark - Blind XXE

CSV Injection -> Meterpreter on Pornhub

CSV Injection Revisited - Making Things More Dangerous(and fun)