Curated advisories that credited to me.

CVE-2022-23942: Hard-coded Credentials in Apache Doris


Read more ⟶

CVE-2022-21687: DSN Injection in gh-ost


Read more ⟶

CVE-2021-45459: OS Command Injection in node-windows


Read more ⟶

CVE-2021-44686: Regular Expression Denial-of-Service (ReDoS) in calibre


Read more ⟶

CVE-2021-44685: OS Command Injection in Git-it


Read more ⟶