Apache Commons Text RCE 漏洞分析 X1r0z published on 2023-01-09 included in category Java安全打 rwctf 体验赛遇到的, 顺带写一下 总体感觉跟 log4j2 jndi 注入的利用方式很像, 毕竟都是 apache 的库
RWCTF 2023 体验赛 Web Writeup X1r0z published on 2023-01-08 included in category WriteupReal World CTF 正赛打不动了过来打体验赛 (