Skip to content
View Sy2n0's full-sized avatar
⭐
Happy Hacking
⭐
Happy Hacking
41 followers · 79 following

Achievements

Achievement: Galaxy BrainAchievement: Pull Sharkx2Achievement: QuickdrawAchievement: YOLO

Achievements

Achievement: Galaxy BrainAchievement: Pull Sharkx2Achievement: QuickdrawAchievement: YOLO

Highlights

Organizations

@HUB-EDUCATION

Block or report Sy2n0

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
Sy2n0/README.md

CVEs

About Me

  • Security Researcher / CTF Player @W4llz

Awards

Year Name Award
2026 W4llz SekaiCTF 2026 2nd
2026 W4llz Break The Syntax CTF 2026 2nd
2025 Jiyong Google Cloud VRP (Vulnerability Reward Program) - Honorable Mention

CVEs

CVE-2026-48718 β€” Firebird

Status

  • Coordinated disclosure (technical details will be published after the embargo).
CVE-2026-1665 β€” Command Injection in nvm

Target

  • nvm-sh/nvm

Summary

  • Command injection caused by insufficient validation of environment variables during wget invocation.

References

CVE-2025-69262 β€” Command Injection in pnpm

Target

  • pnpm/pnpm

Summary

  • Command injection through environment variable substitution, potentially leading to arbitrary code execution in CI/CD and build environments.

References

CVE-2025-14550 β€” Denial of Service in Django

Target

  • django/django

Summary

  • Super-linear processing of repeated HTTP headers in the ASGI request path, enabling a potential denial-of-service attack.

References

Contact

Pinned Loading

  1. I'm an early 🐀 I'm an early 🐀
    1 
    🌞 Morning    42 commits  β–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘  24.7%
    2 
    πŸŒ† Daytime    66 commits  β–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘  38.8%
    3 
    πŸŒƒ Evening    46 commits  β–ˆβ–ˆβ–ˆβ–ˆβ–ˆβ–‹β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘  27.1%
    4 
    πŸŒ™ Night      16 commits  β–ˆβ–‰β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘β–‘   9.4%
  2. game box game box
    1 
    game box
  3. Sy2n0 Sy2n0 Public

  4. nasa/cFS nasa/cFS Public

    The Core Flight System (cFS)

    C 1.4k 365