<?xml version="1.0" encoding="utf-8"?>
<rss version="2.0">
  <channel>
    <title>U. Saicha - Security Research</title>
    <link>https://ulysaicha.com</link>
    <description>Technical notes, writeups, and research from a cybersecurity portfolio.</description>
    <language>en</language>
    
      <item>
        <title>CVE-2025-13997: Unauthenticated API Key Disclosure in King Addons for Elementor</title>
        <link>https://ulysaicha.com/posts/cve-2025-13997-king-addons-api-key-disclosure/</link>
        <guid>https://ulysaicha.com/posts/cve-2025-13997-king-addons-api-key-disclosure/</guid>
        <pubDate>Sun, 22 Mar 2026 00:00:00 GMT</pubDate>
        <description>A King Addons for Elementor issue where API keys were exposed in rendered page source.</description>
      </item>
    
      <item>
        <title>CVE-2025-13587: Two-Factor Authentication Bypass in Two Factor via Email</title>
        <link>https://ulysaicha.com/posts/cve-2025-13587-two-factor-email-2fa-bypass/</link>
        <guid>https://ulysaicha.com/posts/cve-2025-13587-two-factor-email-2fa-bypass/</guid>
        <pubDate>Wed, 18 Feb 2026 00:00:00 GMT</pubDate>
        <description>A WordPress 2FA plugin issue where token handling could let a user skip the email second factor.</description>
      </item>
    
      <item>
        <title>CVE-2024-6288: Reflected XSS in Conversios WooCommerce Tracking</title>
        <link>https://ulysaicha.com/posts/cve-2024-6288-conversios-reflected-xss/</link>
        <guid>https://ulysaicha.com/posts/cve-2024-6288-conversios-reflected-xss/</guid>
        <pubDate>Thu, 27 Jun 2024 00:00:00 GMT</pubDate>
        <description>A reflected cross-site scripting issue in the Conversios WooCommerce tracking plugin.</description>
      </item>
    
      <item>
        <title>CVE-2023-6875: POST SMTP Mailer Authorization Bypass to Admin Account Takeover</title>
        <link>https://ulysaicha.com/posts/cve-2023-6875-post-smtp-bug-bounty/</link>
        <guid>https://ulysaicha.com/posts/cve-2023-6875-post-smtp-bug-bounty/</guid>
        <pubDate>Thu, 11 Jan 2024 00:00:00 GMT</pubDate>
        <description>My POST SMTP Mailer authorization bypass finding, the proof-of-concept flow, and why the impact was high.</description>
      </item>
    
      <item>
        <title>CVE-2023-7048: CSRF to Contact Lead Export in My Sticky Bar</title>
        <link>https://ulysaicha.com/posts/cve-2023-7048-my-sticky-bar-csrf-lead-export/</link>
        <guid>https://ulysaicha.com/posts/cve-2023-7048-my-sticky-bar-csrf-lead-export/</guid>
        <pubDate>Wed, 03 Jan 2024 00:00:00 GMT</pubDate>
        <description>A My Sticky Bar CSRF issue that could trigger contact lead CSV export from an administrator&#39;s browser.</description>
      </item>
    
      <item>
        <title>dCTF 2021: Behind The Scenes</title>
        <link>https://ulysaicha.com/posts/dctf-2021-behind-the-scenes/</link>
        <guid>https://ulysaicha.com/posts/dctf-2021-behind-the-scenes/</guid>
        <pubDate>Sun, 16 May 2021 00:00:00 GMT</pubDate>
        <description>Solving a dCTF image challenge by using Depix and carefully cropping pixelated text.</description>
      </item>
    
      <item>
        <title>dCTF 2021: Company Leak</title>
        <link>https://ulysaicha.com/posts/dctf-2021-company-leak/</link>
        <guid>https://ulysaicha.com/posts/dctf-2021-company-leak/</guid>
        <pubDate>Sun, 16 May 2021 00:00:00 GMT</pubDate>
        <description>Using ZIP internals and bkcrack to approach a nested encrypted archive challenge.</description>
      </item>
    
      <item>
        <title>dCTF 2021: Discord PingPong</title>
        <link>https://ulysaicha.com/posts/dctf-2021-discord-pingpong/</link>
        <guid>https://ulysaicha.com/posts/dctf-2021-discord-pingpong/</guid>
        <pubDate>Sun, 16 May 2021 00:00:00 GMT</pubDate>
        <description>Investigating a Go Discord bot binary and recovering the path to the challenge flag.</description>
      </item>
    
      <item>
        <title>dCTF 2021: My First CTF</title>
        <link>https://ulysaicha.com/posts/dctf-2021-first-ctf/</link>
        <guid>https://ulysaicha.com/posts/dctf-2021-first-ctf/</guid>
        <pubDate>Sun, 16 May 2021 00:00:00 GMT</pubDate>
        <description>Notes from my first live CTF: the team, the search trail, and a few side discoveries from the weekend.</description>
      </item>
    
      <item>
        <title>dCTF 2021: Injection</title>
        <link>https://ulysaicha.com/posts/dctf-2021-injection/</link>
        <guid>https://ulysaicha.com/posts/dctf-2021-injection/</guid>
        <pubDate>Sun, 16 May 2021 00:00:00 GMT</pubDate>
        <description>Finding a Flask/Jinja SSTI, reading source files, and decoding the final password.</description>
      </item>
    
      <item>
        <title>dCTF 2021: Leak Spin and DevOps vs SecOps</title>
        <link>https://ulysaicha.com/posts/dctf-2021-leak-spin-devops-vs-secops/</link>
        <guid>https://ulysaicha.com/posts/dctf-2021-leak-spin-devops-vs-secops/</guid>
        <pubDate>Sun, 16 May 2021 00:00:00 GMT</pubDate>
        <description>Finding two dCTF flags through GitHub pages, branches, and GitHub Actions artifacts.</description>
      </item>
    
      <item>
        <title>dCTF 2021: Simple Web</title>
        <link>https://ulysaicha.com/posts/dctf-2021-simple-web/</link>
        <guid>https://ulysaicha.com/posts/dctf-2021-simple-web/</guid>
        <pubDate>Sun, 16 May 2021 00:00:00 GMT</pubDate>
        <description>Solving a simple web challenge by changing an authorization parameter in the request.</description>
      </item>
    
      <item>
        <title>dCTF 2021: Strong Password</title>
        <link>https://ulysaicha.com/posts/dctf-2021-strong-password/</link>
        <guid>https://ulysaicha.com/posts/dctf-2021-strong-password/</guid>
        <pubDate>Sun, 16 May 2021 00:00:00 GMT</pubDate>
        <description>Cracking a ZIP password with John the Ripper and learning from a command-line nuance.</description>
      </item>
    
      <item>
        <title>dCTF 2021: This one is really basic</title>
        <link>https://ulysaicha.com/posts/dctf-2021-this-one-is-really-basic/</link>
        <guid>https://ulysaicha.com/posts/dctf-2021-this-one-is-really-basic/</guid>
        <pubDate>Sun, 16 May 2021 00:00:00 GMT</pubDate>
        <description>Solving a recursive base64 challenge with a small decoding script.</description>
      </item>
    
      <item>
        <title>dCTF 2021: Very Secure Website</title>
        <link>https://ulysaicha.com/posts/dctf-2021-very-secure-website/</link>
        <guid>https://ulysaicha.com/posts/dctf-2021-very-secure-website/</guid>
        <pubDate>Sun, 16 May 2021 00:00:00 GMT</pubDate>
        <description>Solving a PHP loose comparison challenge with a magic hash.</description>
      </item>
    
  </channel>
</rss>

