| 2020-05-27 | OXID eShop 6.x below 6.3.4 SQL Injection (SQLi) to RCE Vulnerability Exploit | ambulong | 1525 | |
| 2020-05-25 | “网鼎杯”朱雀之战——魔法房间题解 | tinyfisher | 4957 | |
| 2020-05-22 | 郭威:金融企业重保一线经验分享 | kelvin2294 | 1734 | |
| 2020-05-20 | Cross-site scripting (XSS) cheat sheet - 2020 | BaCde | 4144 | |
| 2020-05-19 | 通过sourcemap解压缩webpack | BaCde | 4540 | |
| 2020-05-12 | 6,000+ HackerOne Disclosed Reports | BaCde | 3697 | |
| 2020-05-11 | Hyper-V internals researches (2006-2019) | BaCde | 2308 | |
| 2020-05-11 | Don’t Force Yourself to Become a Bug Bounty Hunter | BaCde | 2098 | |
| 2020-05-11 | From a naive-looking PDF Download to SSRF via HTML Injection in AWS | BaCde | 3218 | |
| 2020-05-11 | Double-Free BUG in WhatsApp exploit poc.[CVE-2020-11932] | BaCde | 2911 | |
| 2020-05-06 | DOM XSS in Gmail with a little help from Chrome | re4lity | 1482 | |
| 2020-04-30 | CVE-2020-0932: remote code execution on microsoft sharepoint | BaCde | 2117 | |
| 2020-04-26 | 一些流行的云waf、cdn、lb的域名列表 | BaCde | 3675 | |
