About Me

Welcome to the my Security Research page. I am a passionate bug hunter and security researcher, dedicated to discovering vulnerabilities and contributing to a safer digital world.

Follow me on Twitter and Bluesky.

---

Latest Discoveries

• CVE-2023-47350

  Cross-Site Request Forgery (CSRF) vulnerability in the user password update functionality in SwiftyEdit CMS v1.1.2. Read More

• CVE-2023-48201

  Stored Cross-Site Scripting (XSS) in Create/Edit Article function in Sunlight CMS v8.0.1. Read More

• CVE-2023-48202

  Stored Cross-Site Scripting (XSS) in SVG image file uploaded in File Manager in Sunlight CMS v8.0.1. Read More

• CVE-2024-24115

  Stored Cross-Site Scripting (XSS) in Edit Page functionality in Cotonti CMS v0.9.24 allows remote authenticated users to inject arbitrary web script or HTML via the ‘rpagetext’ form field. Read More

© 2024 @mechaneus. All rights reserved.