A quieter week that perfectly fits the two deep dives!
📚 ORM Leaking More Than You Joined For
The latest opus in Elttam's posts on ORM leaks, including some semgrep rules and a reference to my blog post on the subject: ORM Leaking More Than You Joined For.
🤿 A Deep And Very Technical Analysis of CVE-2025-55182 (React2Shell)
Probably the best deep dive I've come across on React2Shell: A Deep And Very Technical Analysis of CVE-2025-55182 (React2Shell).
Written by PentesterLab
The platform to learn web hacking and security code review
Related Blog Post