astronaut
Logbook
Web Security • Research • CTF
Menu
Filtered View

Tag: #wordpress

1 posts

Jun 30, 2026

Filtered Reality

Full-chain CTF writeup for a WordPress and Puppeteer bot challenge involving nonce leakage, DOM clobbering, CSP nonce recovery, RCE, and SHA-256 length extension.

#writeup #wordpress #xss #csp #rce
Sekaictf2026 web hard