| 2020-05-27 | OXID eShop 6.x below 6.3.4 SQL Injection (SQLi) to RCE Vulnerability Exploit | ambulong | 1550 | |
| 2020-05-25 | “网鼎杯”朱雀之战——魔法房间题解 | tinyfisher | 5057 | |
| 2020-05-22 | 郭威:金融企业重保一线经验分享 | kelvin2294 | 1750 | |
| 2020-05-20 | Cross-site scripting (XSS) cheat sheet - 2020 | BaCde | 4187 | |
| 2020-05-19 | 通过sourcemap解压缩webpack | BaCde | 4640 | |
| 2020-05-12 | 6,000+ HackerOne Disclosed Reports | BaCde | 3803 | |
| 2020-05-11 | Hyper-V internals researches (2006-2019) | BaCde | 2323 | |
| 2020-05-11 | Don’t Force Yourself to Become a Bug Bounty Hunter | BaCde | 2126 | |
| 2020-05-11 | From a naive-looking PDF Download to SSRF via HTML Injection in AWS | BaCde | 3329 | |
| 2020-05-11 | Double-Free BUG in WhatsApp exploit poc.[CVE-2020-11932] | BaCde | 2942 | |
| 2020-05-06 | DOM XSS in Gmail with a little help from Chrome | re4lity | 1512 | |
| 2020-04-30 | CVE-2020-0932: remote code execution on microsoft sharepoint | BaCde | 2136 | |
| 2020-04-26 | 一些流行的云waf、cdn、lb的域名列表 | BaCde | 3814 | |
