DOC-1923 CLASSIFIED
UMASSCTF 2026. Factory Monitor [pwn]

UMASSCTF 2026. Factory Monitor [pwn]

PIE ASLR brute-force via fork() + exit code oracle on the child process, followed by a stack overflow ROP chain on the…

DOC-1919 CLASSIFIED
KashiCTF2026. SimpleChat [web]

KashiCTF2026. SimpleChat [web]

Stored XSS via unsanitized sender field in chat messages. The message body is HTML-entity-encoded, but the sender name is injected raw into…