Scanwich Station
A table-side QR reader for hungry guests and suspicious menus. One special order can make the scanner serve more than dinner.
2026-06-05 14 min read 5 solves / 405 points
Selected work
Authored challenge
Scanwich Station
14 min read
Summary
Hybrid web and pwn challenge about mass assignment, QR-code decoding, signed integer overflow, and GLIBC dynamic symbol poisoning. Published for GPNCTF 2026.
CVE
Joomla CMS
Privilege escalation through com_users batch task
Summary
Joomla CMS 4.0.0 through 5.4.5 and 6.0.0 through 6.1.0 were affected by an improper access check in the com_users batch task. Authenticated attackers could abuse the batch flow to escalate privileges.
References
Disclosure timeline
- Reported to the Joomla Security Strike Team.
- Confirmation of the issue and initial patch development.
- Fixed in Joomla CMS 5.4.6 and 6.1.1 and CVE assigned.
Certificate
Hack The Box Certified Penetration Testing Specialist
8 min read
Summary
Completed the HTB CPTS path and passed the practical exam on the first attempt, including a full penetration-test report for the exam environment. The work focused on disciplined enumeration, Active Directory attack paths, web findings, and reproducible reporting.
