An exploration of my mixed opinions towards the Matrix ecosystem.
ClassLink OneClick Extension Part 3: Beating A Very Dead Horse
An investigation of a new page on ClassLink's website.
ClassLink OneClick Extension Part 2: Electric Boogaloo (CVE-2023-45889)
Finding a vulnerability in the patch to a vulnerability which I also discovered.
How I Found A Vulnerability in The ClassLink OneClick Extension (CVE-2022-48612)
This is the story of how I found a universal cross-site scripting vector in a browser extension used by over 10 million users.