Loading...

Initializing...

Security Researcher

_

Offensive Security Engineer · Full Stack Developer · Bug Bounty Hunter

Avatar

Security-focused Software Engineer with strong offensive security background. I specialize in Web Application Penetration Testing, API Security Testing, and Secure Laravel Development. I build applications — and I break them professionally.

Read Blog View Research

Latest Posts

CVE-2026-32593 | How a Single Regex Character Broke Winter CMS Security
Mar 13, 2026 · 9 min read

CVE-2026-32593 | How a Single Regex Character Broke Winter CMS Security

Winter CMS, a Laravel-based content management system, had a critical SQL injection vulnerability in its backend filter widget. The issue stemmed from a regex that only checked for the presence of a digit, allowing attackers to inject malicious SQL. This post details the discovery, analysis, and remediation of CVE-2026-32593.

WebSecuritySecurityResearchSQLInjection
Read more →
LABx_Docs - Complete Setup Guide
Jan 23, 2026 · 13 min read

LABx_Docs - Complete Setup Guide

A simple guide to set up your web security training environment

WebSecurity
Read more →
Web Security Labs Part III
Sep 15, 2025 · 11 min read

Web Security Labs Part III

Walkthrough For Web Security Category In Cyber Talents Part 3

WebSecuritycybertalents
Read more →
All posts →

Latest Research

SQL Injection in Backend Filter Widget numberrange Scope via numbersFromAjax

2026 · GitHub Security Advisory · Moderate

The backend Filter widget can be abused for SQL injection when a numberrange scope is configured with a conditions key. An authenticated backend user may inject SQL via the list filter AJAX handler.

SQL Injection
CVE-2026-32593

Privilege Escalation: Content Editor to Administrator via Stored XSS

2025 · Responsible Disclosure · High

Found a stored cross-site scripting vulnerability that allows a content editor to escalate privileges to administrator. Malicious JavaScript injected through content fields executes in the context of an admin session, enabling full account takeover.

Stored XSS / Privilege Escalation
CVE-202X-XXXXX

Incomplete Twig sandbox patch (CVE-202X-XXXXX bypass) allows data modification, exfiltration, and RCE via unblocked Model and Builder methods

2025 · Responsible Disclosure · High

Identified an incomplete patch for a prior Twig sandbox escape CVE. Unblocked Model and Builder methods remained accessible within the sandbox, enabling data modification, data exfiltration, and remote code execution.

Sandbox Escape / RCE
CVE-202X-XXXXX
All research →

Projects

ReservaHub
Laravel 12Vue.js 3

ReservaHub

Production-ready, multi-tenant restaurant booking & management platform with GPS discovery, real-time reservations, PayPal payments, analytics, and support tickets.

View Project →
Zadx Tracking Gym
Java 17Swing

Zadx Tracking Gym

Enterprise-grade multi-branch gym management system with role-based access control, real-time member tracking, training progress monitoring, and comprehensive audit compliance.

View Project →
LABx_Docs
PHP 8.0+MySQL 5.7+

LABx_Docs

Self-hosted web application security training platform with 40+ exploitable labs mapped to OWASP Top 10, CWE/SANS Top 25, and real-world HackerOne disclosures.

View Project →
All projects →
Let's Connect

Interested in working together?

Whether you have a security concern, a collaboration idea, or just want to talk cybersecurity — I'm always open to connecting.

Get in Touch LinkedIn