Lab_01 // Research & Disclosures

Public research, disclosed vulnerabilities, and the tools we maintain .

Disclosures

Research Posts

Arsenal Tools

Latest Release

Feb 3, 2026

01 — WRITINGS

Bug Bounty

When The Gateway Becomes The Doorway: Pre-Auth RCE in API Management

Discover how a decade-old vulnerability class leads to pre-authentication Remote Code Execution (RCE) in an enterprise API management platform. This article details the end-to-end compromise of an API Gateway, from initial subdomain reconnaissance and API fuzzing to achieving an interactive reverse shell via unsafe Java deserialization in unauthenticated cluster sync endpoints.

Jan 18, 2026

02 — CVE Disclosures

CVE-2026-25537Type Confusion leads to potential authorization bypass

jsonwebtoken (rust)Feb 3, 2026

CVE-2025-61582Unauthenticated denial of service leading to application crash in Ts3 manager <=v2.2.1

TS3 managerOct 1, 2025

CVE-2025-61583Unauthenticated reflected cross-site scripting in `Server` parameter in Ts3 manager <=v2.2.1

TS3 managerOct 1, 2025

CVE-2025-54123Remote Code Execution in Hoverfly Middleware API (/api/v2/hoverfly/middleware)

HoverflySep 11, 2025

CVE-2025-54376Unauthenticated Access to Admin WebSocket Log Streaming Endpoint in Hoverfly

HoverflySep 11, 2025

03 — Arsenal / Tools

No tools available at this time