McSam's blog

https://themcsam.github.io/McSam's blogA friendly blog platform where i'll discuss about my findings, tricks and techniques used in compromising targets. Have fun reading i hope you learn something new. 2026-02-09T22:58:35+00:00 McSam https://themcsam.github.io/ Jekyll © 2026 McSam /assets/img/favicons/favicon.ico /assets/img/favicons/favicon-96x96.png Authenticated RCE and File Read Vulnerabilities Found in CyberPanel2026-01-17T18:45:00+00:00 2026-01-20T21:39:54+00:00 https://themcsam.github.io/posts/cyberpanel-vulnerabilties/ McSam

Technical breakdown of vulnerabilties i discovered in CyberPanel Introduction During the Christmas break, my friend @whiteov3rflow and I decided to undertake a small research project exploring the security posture of cloud hosting panels. We selected CyberPanel as our starting point and spent the holidays examining its features, behavior, and underlying code paths. The research turned out to...

Interpreter @ SNHT CTF '252025-10-30T20:45:00+00:00 2025-12-30T18:49:52+00:00 https://themcsam.github.io/posts/interpreter/ McSam

Interpreter - SNHT CTF ‘25 Difficulty: Easy Overview: Interpreter is a challenge created by a friend of mine, 0x1337 (aka blood pwn). If you are into pwn, you have probably come across his work. His blog is packed with really solid writeups, which you can check out here. The challenge starts off with a buffer overflow vulnerability. We take advantage of this to leak libc addresses, and from t...

Reader @ Flagyard2025-10-30T20:45:00+00:00 2025-10-30T20:45:00+00:00 https://themcsam.github.io/posts/reader/ McSam

Reader - Flagyard Difficulty: Easy Overview: The Reader challenge threads two complementary vulnerabilities into a compact exploit chain. On the one hand, the service exposes an arbitrary file-read primitive that lets us exfiltrate runtime memory. On the other hand, a classic stack buffer overflow (no stack canary) gives us a write primitive powerful enough to overwrite saved frame data and th...

Lucky @ Flagyard2025-10-03T20:45:00+00:00 2025-10-31T10:21:26+00:00 https://themcsam.github.io/posts/lucky/ McSam

Lucky - Flagyard Difficulty: Easy Overview: Lucky chains a stack-reuse bug to force a local variable to attacker-controlled values, allowing bypass of safety checks. That bypass triggers an out-of-bounds write which lets you corrupt critical memory. A separate libc leak reveals a libc address so you can compute the base and turn the OOB write into full code execution. Basic File Checks First ...

CVE-2024-39930 PoC - gogs ssh in-built server RCE2025-06-29T00:05:00+00:00 2025-07-01T16:16:11+00:00 https://themcsam.github.io/posts/gogs-RCE-PoC/ McSam

Vulnerability anaylsis and PoC Development for CVE-2024-39930 Introduction Gogs is a lightweight and self-hosted Git service that’s simple to set up and ideal for organizations that prefer to keep their source code off third-party platforms like GitHub. While Gogs offers many of the same features as GitHub, its self-hosted nature makes it particularly attractive for internal development enviro...