Menu
  • PRIVACY
  • WHO WE ARE
  • HOW IT WORKS
  • BLOG
  • ADVISORIES
  • LOG IN
  • SIGN UP
  • thezdi
  • Trend Micro
thezdi
Menu
  • PRIVACY
  • WHO WE ARE
  • HOW IT WORKS
  • BLOG
  • ADVISORIES
  • LOG IN SIGN UP
SUBSCRIBE
Pwn2Own Automotive 2025 - Day Three and Final Results
Blog post

CVE-2023-35150: Arbitrary Code Injection in XWiki.org XWiki

  • August 23, 2023
  • XWiki, Research, Exploit
Pwn2Own Automotive 2025 - Day Three and Final Results
Blog post

CVE-2022-3236: Sophos Firewall User Portal and Web Admin Code Injection

  • October 19, 2022
  • Sophos, JSON, Exploit
Pwn2Own Automotive 2025 - Day Three and Final Results
Blog post

CVE-2021-26084: Details on the Recently Exploited Atlassian Confluence OGNL Injection Bug

  • September 22, 2021
  • Atlassian, Research, Exploit
Pwn2Own Automotive 2025 - Day Three and Final Results
Blog post

Remote Code Execution via Ruby on Rails Active Storage Insecure Deserialization

  • June 20, 2019
  • Ruby on Rails, Research, Exploit

General Inquiries

zdi@trendmicro.com

Find us on X

@thezdi

Find us on Mastodon

Mastodon

Media Inquiries

media_relations@trendmicro.com

Sensitive Email Communications

PGP Key
WHO WE ARE
  • Our Mission
  • Trend Micro
  • TippingPoint IPS
HOW IT WORKS
  • Process
  • Researcher Rewards
  • FAQS
  • Privacy
ADVISORIES
  • Published Advisories
  • Upcoming Advisories
  • RSS Feeds
BLOG
thezdi