Java FTP CRLF Injection
https://xianzhi.aliyun.com/forum/topic/1585/

Mysql注入新姿势---innodb存储引擎的利用
https://xianzhi.aliyun.com/forum/topic/1586/

CVE-2017-12629 solr xxe & rce 详细分析(附新的payload)
https://xianzhi.aliyun.com/forum/topic/1523/

pfSense <= 2.3.1_1 (pfSense-SA-16_08.webgui)授权命令执行漏洞披露
https://www.trustedsec.com/2017/11/full-disclosure-authenticated-command-execution-vulnerability-pfsense/

Intel FSP逆向分析入门指南
https://puri.sm/posts/primer-to-reverse-engineering-intel-fsp/

PHPMYFAQ 2.9.9 Code Injection
https://cxsecurity.com/issue/WLB-2017110111