CVE-2025-24893 is a critical unauthenticated remote code execution vulnerability in XWiki (versions < 15.10.11, 16.4.1, 16.5.0RC1) caused by improper handling of Groovy expressions in the SolrSearc...
CVE-2024-32019 is a high-severity local privilege escalation vulnerability in Netdata (versions >= 1.44.0-60 < 1.45.3), caused by insecure use of the PATH variable in the ndsudo SUID binary, allowi...
CVE-2025-27591 is a known privilege escalation vulnerability in the Below service (version < v0.9.0)
A walkthrough of the HackTheBox 'Pterodactyl' machine. This write-up covers initial access, privilege escalation, and post-exploitation techniques.
A walkthrough of the HackTheBox 'Facts' machine. This write-up covers initial access, privilege escalation, and post-exploitation techniques.
A walkthrough of the HackTheBox 'NanoCorp' machine. This write-up covers initial access, privilege escalation, and post-exploitation techniques.
A walkthrough of the HackTheBox 'Giveback' machine. This write-up covers initial access, privilege escalation, and post-exploitation techniques.
A walkthrough of the HackTheBox 'Conversor' machine. This write-up covers initial access, privilege escalation, and post-exploitation techniques.
A walkthrough of the HackTheBox 'Signed' machine. This write-up covers initial access, privilege escalation, and post-exploitation techniques.
A walkthrough of the HackTheBox 'DarkZero' machine. This write-up covers initial access, privilege escalation, and post-exploitation techniques.