About
Introduction
Third-year undergraduate student at Nanjing University of Posts and Telecommunications (NJUPT)
Focus on Web Security (mostly Java application security), Red Team Pentest, Cloud Security and Blockchain (recently)
CTF player at X1cT34m, Nu1L Team and Straw Hat
Contact
Email: [email protected]
GitHub: https://github.com/X1r0z
Twitter: https://x.com/X1r0z
LinkedIn: https://www.linkedin.com/in/x1r0z
Work Experience
- Web Security Researcher at Tencent Security Xuanwu Lab (Intern): 2024.07 - 2024.09
My CVE List
CVE-ID | Vendor | Product | Type | CVSS |
---|---|---|---|---|
CVE-2023-21931 | Oracle | WebLogic Server | RCE | 7.5 |
CVE-2023-22086 | Oracle | WebLogic Server | RCE | 7.5 |
CVE-2023-51784 | Apache | InLong Manager | RCE | 9.8 |
CVE-2023-51785 | Apache | InLong Manager | File Read | 7.5 |
CVE-2024-36268 | Apache | InLong TubeMQ | RCE | 9.8 |
CVE-2024-22399 | Apache | Seata | RCE | - |