Search for a command to run...
Articles tagged with #rce
Plant Photographer is a TryHackMe challenge built around a botanist's personal portfolio website running on Werkzeug/Python. The box covers three main vulnerability classes: SSRF (Server-Side Request
Description Speed Chatting is an AI Security Challenge that was part of the Love at First Breach 2026, red team beginner’s CTF. It covers prompt injection and system configuration vulnerabilities in A
Introduction In this task, we will explore CVE-2025-55182, one of the most critical vulnerabilities discovered in December 2025, with a maximum CVSS score of 10.0. This vulnerability affects React Server Components (RSC) and the frameworks that imple...
In late March 2022 the security community was alerted to remote code execution flaws affecting the Spring Framework. One of the issues—now commonly referred to as Spring4Shell (CVE-2022-22965)—impacts parts of Spring Core and, under a specific set of...
The Whiterose challenge on TryHackMe is inspired by the Mr. Robot episode 409 Conflict and follows the theme of taking down the Deus Group. This room combines real-world web exploitation techniques with privilege escalation misconfigurations, making ...
The Archangel challenge simulated a real-world vulnerable web application environment where misconfigurations and insecure coding practices could be chained together for full system compromise. The target machine hosted multiple virtual hosts and dev...
