▌

WRITEUPS

0xl4ugh CTF: GAP - JSON/JS Discrepancy → Lodash.template RCE

platform: ctfdiff: elite2026-01-26

One JSON key becomes multiple JS parameters → values run out → ES6 default param executes.

CyCTF News Revenge: NoSQLi Auth Bypass → XML Content-Type Bypass → Stored XSS → Admin Cookie Exfiltration

platform: ctfdiff: hard2025-11-08

Authentication bypass via MongoDB NoSQL injection chained with XML content-type filter bypass to land stored XSS, executed by admin to exfiltrate cookies containing the flag.