> ESC
โ†‘โ†“ navigate โ†ต select esc close
Security research & offensive ops Online

dxleryt

Security Researcher @ RaptX & CTF Player

12 CVE ยท BC 5 ยท HoF 2 ยท HTB #1 Jordan ยท FlagYard #1 Jordan

Focus Offensive Security
Mode Online
๐Ÿ“ CTF Writeups & Posts ๐Ÿ† Achievements
Statistics
Posts6
Achievements14
CVEs Found12
Recognition & Hall of Fame
๐Ÿš€
NASA P2 Appreciation Letter
๐ŸŒ
Lumen
CVE Severity Breakdown
Critical
2
High
4
Medium
6
Low
0
CVE Timeline
2026-03-15

CVE-2026-26213: thingino-firmware Unauthenticated Command Injection in Captive Portal

CVSS 8.7
2026-03-13

CVE-2026-32709: PX4 Autopilot MAVLink FTP Unauthenticated Path Traversal

CVSS 5.4
2026-03-13

CVE-2026-32713: PX4 Autopilot MAVLink FTP Session Validation Logic Error

CVSS 4.3
2026-03-05

CVE-2026-28495: GetSimpleCMS-CE CSRF to Remote Code Execution

CVSS 9.7
2026-02-28

CVE-2026-26022: Gogs Stored XSS via data: URI in HTML Sanitizer

CVSS 8.7
2026-02-28

CVE-2026-2811: Ajaxify Comments Unauthenticated HTTP Header Injection

CVSS 5.4
2026-02-28

CVE-2026-28423: Statamic CMS Server-Side Request Forgery via Glide

CVSS 6.8
2026-02-24

CVE-2026-27796: Homarr Unauthenticated Integration Metadata Leak

CVSS 5.3
2026-02-24

CVE-2026-27824: Calibre IP Ban Bypass via X-Forwarded-For Spoofing

CVSS 5.3
2026-02-23

CVE-2026-27728: OneUptime Command Injection

CVSS 10.0
2026-02-21

CVE-2026-26331: yt-dlp Arbitrary Command Injection via --netrc-cmd

CVSS 8.8
2026-02-10

CVE-2026-25731: Calibre Templite SSTI to Arbitrary Code Execution

CVSS 7.8
Navigation

Content

๐Ÿ“„

CTF Writeups & Posts

CTF challenge solutions, security tutorials, and technical deep dives

 ๐Ÿ†

Achievements

Certifications, CTF wins, CVEs, and milestones

Shortcuts

๐Ÿ“ All Posts ๐Ÿ† Achievements
Recent Signals

CVE-2026-26213: thingino-firmware Unauthenticated Command Injection in Captive Portal

2026-03-15 - Vulnerability Discovery

Unauthenticated OS command injection in the WiFi captive portal API endpoint (api.cgi) of thingino-firmware allows any device on the camera's AP to execute arbitrary commands as root, achieving full device compromise.

CVE-2026-32709: PX4 Autopilot MAVLink FTP Unauthenticated Path Traversal

2026-03-13 - Vulnerability Discovery

An unauthenticated path traversal vulnerability in the PX4 Autopilot MAVLink FTP implementation allows reading, writing, and deleting arbitrary files on the flight controller.

CVE-2026-32713: PX4 Autopilot MAVLink FTP Session Validation Logic Error

2026-03-13 - Vulnerability Discovery

A logic error in the session validation of PX4's MAVLink FTP implementation allows operations on invalid file descriptors and session isolation bypass.

Cosmic Components Co. - UniVsThreats26 Quals Web

2026-03-06 - Writeup

Stacking alternating coupons, abusing negative quantities and session-persistent discounts lets us buy every product for pennies, farm loyalty rewards, hit Elite tier, and grab the flag.

Starlink - UniVsThreats26 Quals Pwn

2026-03-06 - Writeup

Chaining a 7-byte format string leak with a strcpy heap overflow to redirect atoi@GOT to system and pop /bin/sh on a non-PIE, partial RELRO Starlink node manager.

Stellar Gateway - UniVsThreats26 Quals Web

2026-03-06 - Writeup

Abusing a JWT kid path lookup to /dev/null lets us sign our own admin token with an empty key, unlock the USS Threads Command Center, and capture the flag.
view all posts | view all achievements