https://gugesay.com/blog 骨哥说事公众号首发地 zh-CN undefined (Guge) undefined (Guge) Tue, 10 Feb 2026 08:25:23 GMT https://gugesay.com/blog/10000美元赏金的炼成：在google-ai代码编辑器antigravity中实现远程 https://gugesay.com/blog/10000美元赏金的炼成：在google-ai代码编辑器antigravity中实现远程 undefined Tue, 10 Feb 2026 08:25:23 GMT undefined (Guge) Antigravityrce白帽故事 https://gugesay.com/blog/40000！如何从路径遍历升级rce！ https://gugesay.com/blog/40000！如何从路径遍历升级rce！ undefined Fri, 17 Jan 2025 06:34:57 GMT undefined (Guge) bugbountyrce白帽故事路径遍历 https://gugesay.com/blog/apache-kafka-ui-远程代码执行漏洞：cve-2023-52251、cve-2024-32030 https://gugesay.com/blog/apache-kafka-ui-远程代码执行漏洞：cve-2023-52251、cve-2024-32030 undefined Wed, 26 Jun 2024 04:08:45 GMT undefined (Guge) CVE-2023-52251CVE-2024-32030rce白帽故事 https://gugesay.com/blog/arc-浏览器：uxss本地文件窃取任意文件写入，路径穿越 https://gugesay.com/blog/arc-浏览器：uxss本地文件窃取任意文件写入，路径穿越 undefined Mon, 23 Jun 2025 07:06:16 GMT undefined (Guge) Arc 浏览器rceUXSS白帽故事 https://gugesay.com/blog/cve-2024-30104：office-365-rce【poc】 https://gugesay.com/blog/cve-2024-30104：office-365-rce【poc】 undefined Tue, 09 Jul 2024 08:16:15 GMT undefined (Guge) CVE-2024-30104rce白帽故事 https://gugesay.com/blog/cve-2024-4358，将反序列化变为未经身份验证的rce https://gugesay.com/blog/cve-2024-4358，将反序列化变为未经身份验证的rce undefined Tue, 11 Jun 2024 04:16:34 GMT undefined (Guge) cve-2024-4358rce白帽故事 https://gugesay.com/blog/hello-lucee-让我们再次黑掉apple～ https://gugesay.com/blog/hello-lucee-让我们再次黑掉apple～ undefined Wed, 21 Feb 2024 07:24:50 GMT undefined (Guge) ApplebugbountyLuceerce白帽故事 https://gugesay.com/blog/tomcat-cve-2025-24813-从计算器到getshell https://gugesay.com/blog/tomcat-cve-2025-24813-从计算器到getshell undefined Fri, 14 Mar 2025 10:18:02 GMT undefined (Guge) CVE-2025-24813rceTomcat白帽故事 https://gugesay.com/blog/windows-电话服务远程代码执行漏洞剖析 https://gugesay.com/blog/windows-电话服务远程代码执行漏洞剖析 undefined Wed, 28 Jan 2026 06:08:43 GMT undefined (Guge) rceWindows电话服务白帽故事 https://gugesay.com/blog/【25000】cve-2025-52665-unifi-access-中的-rce https://gugesay.com/blog/【25000】cve-2025-52665-unifi-access-中的-rce undefined Mon, 03 Nov 2025 07:21:46 GMT undefined (Guge) rce白帽故事 https://gugesay.com/blog/【2500】通过无人认领的node包实施rce攻击 https://gugesay.com/blog/【2500】通过无人认领的node包实施rce攻击 undefined Fri, 14 Feb 2025 06:57:12 GMT undefined (Guge) NPMrce白帽故事 https://gugesay.com/blog/【6000】mozilla-vpn-客户端通过文件写入和路径遍历的-rce https://gugesay.com/blog/【6000】mozilla-vpn-客户端通过文件写入和路径遍历的-rce undefined Wed, 30 Jul 2025 01:30:13 GMT undefined (Guge) MozillarceVPN白帽故事 https://gugesay.com/blog/【cve-2024-22274】vmware-vcenter-server远程代码执行漏洞 https://gugesay.com/blog/【cve-2024-22274】vmware-vcenter-server远程代码执行漏洞 undefined Wed, 17 Jul 2024 06:45:17 GMT undefined (Guge) CVE-2024–22274rcevCenterVMWare白帽故事 https://gugesay.com/blog/【cve-2024-42327】zabbix-rce-poc-公布 https://gugesay.com/blog/【cve-2024-42327】zabbix-rce-poc-公布 undefined Mon, 17 Feb 2025 01:05:07 GMT undefined (Guge) CVE-2024-42327rce信息差 https://gugesay.com/blog/【cve-2024-54887】tp-link路由器的逆向、发现与利用 https://gugesay.com/blog/【cve-2024-54887】tp-link路由器的逆向、发现与利用 undefined Mon, 13 Jan 2025 06:55:05 GMT undefined (Guge) CVE-2024-54887rceTP-Link白帽故事 https://gugesay.com/blog/【cve-2025-20188】思科上传漏洞分析 https://gugesay.com/blog/【cve-2025-20188】思科上传漏洞分析 undefined Tue, 03 Jun 2025 02:45:23 GMT undefined (Guge) CiscoCVE-2025-20188rce思科白帽故事 https://gugesay.com/blog/【cve-2025-21298】严重级-0-click-的漏洞成因与复现 https://gugesay.com/blog/【cve-2025-21298】严重级-0-click-的漏洞成因与复现 undefined Tue, 15 Apr 2025 06:29:58 GMT undefined (Guge) 0-clickCVE-2025-21298OLErce白帽故事 https://gugesay.com/blog/【天价漏洞】11-7万美元！一个文件攻破meta-messenger，实现远 https://gugesay.com/blog/【天价漏洞】11-7万美元！一个文件攻破meta-messenger，实现远 undefined Wed, 17 Sep 2025 06:52:06 GMT undefined (Guge) DLL劫持facebookMessengerMetarce白帽故事远程代码执行 https://gugesay.com/blog/【赏金15000美元】通过监控调试模式实现-rce https://gugesay.com/blog/【赏金15000美元】通过监控调试模式实现-rce undefined Sat, 14 Sep 2024 08:35:58 GMT undefined (Guge) bugbountyLFIrce白帽故事调试模式 https://gugesay.com/blog/一个简单的-ssti-如何变为-rce https://gugesay.com/blog/一个简单的-ssti-如何变为-rce undefined Wed, 29 Oct 2025 06:25:52 GMT undefined (Guge) rceSSTI白帽故事 https://gugesay.com/blog/一则图片上传到-getshell-的故事 https://gugesay.com/blog/一则图片上传到-getshell-的故事 undefined Fri, 08 Aug 2025 02:51:07 GMT undefined (Guge) getshellrce图片上传白帽故事 https://gugesay.com/blog/一周三步曲：从开放重定向到远程代码执行！ https://gugesay.com/blog/一周三步曲：从开放重定向到远程代码执行！ undefined Tue, 19 Mar 2024 14:28:56 GMT undefined (Guge) bugbountyrce白帽故事 https://gugesay.com/blog/从-cookie-同意到命令执行 https://gugesay.com/blog/从-cookie-同意到命令执行 undefined Fri, 25 Jul 2025 02:46:17 GMT undefined (Guge) rcesql注入白帽故事 https://gugesay.com/blog/从-self-xss-到-rce https://gugesay.com/blog/从-self-xss-到-rce undefined Fri, 11 Apr 2025 01:47:24 GMT undefined (Guge) rceXSS白帽故事 https://gugesay.com/blog/从LFI到RCE https://gugesay.com/blog/从LFI到RCE undefined Mon, 20 Nov 2023 02:38:43 GMT undefined (Guge) bugbountyLFIrce白帽故事 https://gugesay.com/blog/从提示注入到rce：剖析ai智能体中的参数注入攻击 https://gugesay.com/blog/从提示注入到rce：剖析ai智能体中的参数注入攻击 undefined Thu, 26 Feb 2026 02:18:32 GMT undefined (Guge) rce提示注入白帽故事 https://gugesay.com/blog/利用操作顺序漏洞实现 Oracle Opera RCE https://gugesay.com/blog/利用操作顺序漏洞实现 Oracle Opera RCE undefined Fri, 11 Aug 2023 11:33:17 GMT undefined (Guge) Oracle Operarce白帽故事 https://gugesay.com/blog/利用英雄无敌5自定义地图实现远程控制对方电脑 https://gugesay.com/blog/利用英雄无敌5自定义地图实现远程控制对方电脑 undefined Wed, 24 Sep 2025 07:50:57 GMT undefined (Guge) rce白帽故事英雄无敌 https://gugesay.com/blog/国外车企安全渗透案例【1】-发现法拉利、宝马、 https://gugesay.com/blog/国外车企安全渗透案例【1】-发现法拉利、宝马、 undefined Mon, 22 Jul 2024 06:22:51 GMT undefined (Guge) rce保时捷劳斯莱斯宝马法拉利白帽故事车企安全 https://gugesay.com/blog/国外车企安全渗透案例【2】-发现法拉利、宝马、 https://gugesay.com/blog/国外车企安全渗透案例【2】-发现法拉利、宝马、 undefined Tue, 23 Jul 2024 04:17:27 GMT undefined (Guge) rce保时捷劳斯莱斯宝马法拉利白帽故事车企安全 https://gugesay.com/blog/国外车企安全渗透案例【3】-发现法拉利、宝马、 https://gugesay.com/blog/国外车企安全渗透案例【3】-发现法拉利、宝马、 undefined Wed, 24 Jul 2024 01:29:44 GMT undefined (Guge) rce白帽故事车企安全 https://gugesay.com/blog/在outlook上寻找远程代码执行漏洞【部分】 https://gugesay.com/blog/在outlook上寻找远程代码执行漏洞【部分】 undefined Fri, 22 Mar 2024 16:00:48 GMT undefined (Guge) bugbountyoutlookrce白帽故事 https://gugesay.com/blog/在一个web网站中获得7000赏金奖励 https://gugesay.com/blog/在一个web网站中获得7000赏金奖励 undefined Wed, 27 Mar 2024 01:32:37 GMT undefined (Guge) bugbountyhackeronerceXSS白帽故事 https://gugesay.com/blog/在侦察阶段如何快速找到-rce https://gugesay.com/blog/在侦察阶段如何快速找到-rce undefined Wed, 22 May 2024 01:27:38 GMT undefined (Guge) Apachebugbountyrce白帽故事 https://gugesay.com/blog/如何在epic-games上赚到7000赏金 https://gugesay.com/blog/如何在epic-games上赚到7000赏金 undefined Thu, 04 Jan 2024 12:07:12 GMT undefined (Guge) bugbountyrce白帽故事 https://gugesay.com/blog/如何将提问变为攻击？claude-desktop-的严重-rce-漏洞 https://gugesay.com/blog/如何将提问变为攻击？claude-desktop-的严重-rce-漏洞 undefined Thu, 06 Nov 2025 06:11:47 GMT undefined (Guge) AIClaude DesktopMCPrce白帽故事 https://gugesay.com/blog/意外发现dos攻击并获得25000美元奖励的故事 https://gugesay.com/blog/意外发现dos攻击并获得25000美元奖励的故事 undefined Tue, 16 Apr 2024 01:44:39 GMT undefined (Guge) bugbountydosrce区块链白帽故事 https://gugesay.com/blog/揭秘-smartermail-沉寂三个月后才公开的满分rce-漏洞 https://gugesay.com/blog/揭秘-smartermail-沉寂三个月后才公开的满分rce-漏洞 undefined Sun, 11 Jan 2026 03:27:57 GMT undefined (Guge) rceSmarterMail白帽故事 https://gugesay.com/blog/继续citrix传奇：cve-2023-5914和cve-2023-6184 https://gugesay.com/blog/继续citrix传奇：cve-2023-5914和cve-2023-6184 undefined Wed, 20 Mar 2024 01:41:09 GMT undefined (Guge) bugbountyCitrixrce白帽故事 https://gugesay.com/blog/警惕利用git的钓鱼及社工攻击【cve-2024-32002】 https://gugesay.com/blog/警惕利用git的钓鱼及社工攻击【cve-2024-32002】 undefined Wed, 03 Jul 2024 05:59:27 GMT undefined (Guge) CVE-2024-32002githubrce白帽故事 https://gugesay.com/blog/黑掉-apple-系列-从-sql-注入到远程代码执行 https://gugesay.com/blog/黑掉-apple-系列-从-sql-注入到远程代码执行 undefined Thu, 09 May 2024 03:13:56 GMT undefined (Guge) Applebugbountyrcesqli白帽故事 https://gugesay.com/blog/💣-google-赏金猎手的胜利：如何发现并利用一个价值10000 https://gugesay.com/blog/💣-google-赏金猎手的胜利：如何发现并利用一个价值10000 undefined Mon, 11 Aug 2025 02:25:48 GMT undefined (Guge) AppSheetGooglerce反序列化白帽故事