Devo

PostsAbout
  • June 15, 2025CVE-2024-34351: Trusting the Host Header—Next.js Server Actions as a Blind-to-Read SSRF ProxyLearn how CVE-2024-34351 lets attackers abuse the Host header in Next.js 13.4–14.1.0 Server Actions, converting a relative redirect into a full-read SSRF that exposes internal data.
  • May 31, 2025CVE-2025-27590: Arbitrary File Write to Remote Code Execution in Oxidized WebExplore CVE-2025-27590: a critical command injection vulnerability in multipart form-data handling. Includes Python PoC, technical analysis, and mitigation strategies.
  • May 23, 2025Deep Dive into CVE-2022-24112: IP Validation Bypass to Remote Code Execution in Apache APISIXTechnical breakdown of CVE-2022-24112 in Apache APISIX: header collision in batch-requests bypasses IP filter, enabling remote code execution. Includes patch details and hardening tips.
  • May 14, 2025Deep Dive into CVE-2020-17530: Root Cause, Exploitation, and OGNL Injection Chain BuildingExplore CVE-2020-17530, a critical OGNL injection vulnerability in Apache Struts2 leading to remote code execution through unsafe dynamic attribute evaluation.
  • May 11, 2025Exploring CVE-2025-24813: Remote Code Execution via Tomcat Session DeserializationStep-by-step exploit of Apache Tomcat CVE-2025-24813: partial .session upload deserialization yields RCE; includes PoC, root-cause, and mitigation advice.
  • May 7, 2025Next.js v12.0.7-v15.2.3 CVE-2025-29927 Analysis and POCDetailed write-up of Next.js CVE-2025-29927 (v12.0.7–v15.2.3): root-cause analysis, step-by-step PoC exploit and concrete mitigation actions.
  • May 1, 2025GLPI Pre-authentication RCE / CVE-2025-24801 Analysis and POCComprehensive guide to exploiting GLPI CVE-2025-24801: change document type, upload PHP shell, execute remotely, plus mitigation and detection tips.

© 2026 Devran Atuğ