About

Introduction

Third-year undergraduate student at Nanjing University of Posts and Telecommunications (NJUPT)

Focus on Web Security (mostly Java application security), Red Team Pentest, Cloud Security and Blockchain (recently)

CTF player at X1cT34m, Nu1L Team and Straw Hat

Contact

Email: [email protected]

GitHub: https://github.com/X1r0z

Twitter: https://x.com/X1r0z

LinkedIn: https://www.linkedin.com/in/x1r0z

Work Experience

  • Web Security Researcher at Tencent Security Xuanwu Lab (Intern): 2024.07 - 2024.09

My CVE List

CVE-ID Vendor Product Type CVSS
CVE-2023-21931 Oracle WebLogic Server RCE 7.5
CVE-2023-22086 Oracle WebLogic Server RCE 7.5
CVE-2023-51784 Apache InLong Manager RCE 9.8
CVE-2023-51785 Apache InLong Manager File Read 7.5
CVE-2024-36268 Apache InLong TubeMQ RCE 9.8
CVE-2024-22399 Apache Seata RCE -
0%