| 3657 | A Tale of Two Formats: Exploiting Insecure XML and ZIP File Parsers to Create a Web Shell |
XXE
RCE
Directory Traversal |
NA |
Eugene Lim (@spaceraccoonsec) |
Bug Bounty | 2020-02-18 | 2023-06-13 |
| 3217 | Open Sesame: Escalating Open Redirect to RCE with Electron Code Review |
Open redirect
RCE
Security code review |
NA |
Eugene Lim (@spaceraccoonsec) |
Bug Bounty | 2020-08-14 | 2023-06-13 |
| 2950 | Supply Chain Pollution: Hunting a 16 Million Download/Week npm Package Vulnerability for a CTF Challenge |
Prototype pollution |
Node.js third-party modules |
Eugene Lim (@spaceraccoonsec) |
Bug Bounty | 2020-12-23 | 2023-06-13 |
| 2843 | Applying Offensive Reverse Engineering to Facebook Gameroom |
Insecure deserialization |
Meta / Facebook |
Eugene Lim (@spaceraccoonsec) |
Bug Bounty | 2021-02-02 | 2023-06-13 |
| 2214 | All Your (d)Base Are Belong To Us, Part 1: Code Execution in Apache OpenOffice (CVE-2021–33035) |
RCE
Memory corruption |
Apache |
Eugene Lim (@spaceraccoonsec) |
Bug Bounty | 2021-09-17 | 2023-06-13 |
| 2134 | All Your (d)Base Are Belong To Us, Part 2: Code Execution in Microsoft Office (CVE-2021-38646) |
RCE
Memory corruption |
Microsoft |
Eugene Lim (@spaceraccoonsec) |
Bug Bounty | 2021-10-22 | 2023-06-13 |
| 1854 | Solving DOM XSS Puzzles |
DOM XSS |
NA |
Eugene Lim (@spaceraccoonsec) |
Bug Bounty | 2022-02-03 | 2023-06-13 |
| 1207 | You Have One New Appwntment: Exploiting iCalendar Properties in Enterprise Applications |
XSS
SMTP injection |
VMware
Synology
Apple
Microsoft
Google
NextCloud |
Eugene Lim (@spaceraccoonsec) |
Bug Bounty | 2022-08-18 | 2023-06-13 |
| 1158 | Exploiting Improper Validation of Amazon Simple Notification Service SigningCertUrl |
Authorization flaw
Signature validation bypass |
Amazon |
Eugene Lim (@spaceraccoonsec) |
Bug Bounty | 2022-08-30 | 2023-06-13 |
| 682 | I Hope This Sticks: Analyzing ClipboardEvent Listeners for Stored XSS |
Stored XSS
Self-XSS |
Zoom |
Eugene Lim (@spaceraccoonsec) |
Bug Bounty | 2022-12-17 | 2023-06-13 |
