A quieter week that perfectly fits the two deep dives!
📚 ORM Leaking More Than You Joined For
The latest opus in Elttam's posts on ORM leaks, including some semgrep rules and a reference to my blog post on the subject: ORM Leaking More Than You Joined For.
🤿 A Deep And Very Technical Analysis of CVE-2025-55182 (React2Shell)
Probably the best deep dive I've come across on React2Shell: A Deep And Very Technical Analysis of CVE-2025-55182 (React2Shell).
Want to build these skills hands-on?
PentesterLab has 700+ real-world labs on web hacking, code review, and vulnerability analysis. Start with a free account.
