| 2018-04-24 | Exploiting misconfigured CORS Null Origin | re4lity | 35 | |
| 2018-04-24 | DOM Based Cross-Site Scripting in Google VRView library | re4lity | 46 | |
| 2018-04-24 | Linkedin Autofill Vulnerability | re4lity | 40 | |
| 2018-04-24 | JWT common pitfalls, attacks, and mitigations | re4lity | 46 | |
| 2018-04-23 | Hash Finder 在线查询工具(支持多种类型) | ourren | 190 | |
| 2018-04-23 | 记Discuz!的一个绕过技巧 | 一个魔术师 | 160 | |
| 2018-04-23 | 一次特殊场景下的鸡肋XSS | 一个魔术师 | 136 | |
| 2018-04-23 | Subdomain enumeration | re4lity | 105 | |
| 2018-04-23 | 基于Service Worker 的XSS攻击面拓展 | ourren | 134 | |
| 2018-04-20 | WebExtension security - Part 1 | re4lity | 132 | |
| 2018-04-20 | MYSQL新特性secure_file_priv对读写文件的影响 | re4lity | 172 | |
| 2018-04-20 | Firefox 56.0 302 Redirect URL Spoofing Vulnerability | re4lity | 99 | |
| 2018-04-20 | 狗子的XSS学习之旅 | ourren | 258 | |
