Talk to us Contact

// Researcher

SecureLayer7 Lab

SecureLayer7 Research Team

SecureLayer7 Lab is the collective byline for collaborative research from the SecureLayer7 offensive security team — penetration testers, vulnerability researchers, and security engineers. Individual deep-dives are bylined to their authors; the Lab byline covers team-authored CVE write-ups and research notes.

310 articles Website

// Latest

Articles by SecureLayer7 Lab

News

CVE-2026-42779: Apache MINA-Deserialization Allowlist Bypass to RCE

Jun 18, 2026 9 min read

News

CVE-2026-7304: SGLang-Unauthenticated RCE via dill.loads

Jun 18, 2026 16 min read

News

CVE-2025-27817: Apache Kafka Connect Arbitrary File Read

Jun 18, 2026 14 min read

Vulnerability Research

CVE-2025-61622: PyFory – Insecure Pickle Deserialization to Remote Code Execution

May 28, 2026 19 min read

Vulnerability Research

CVE-2025-48459: Apache IoTDB – Unsafe Deserialization via Class.forName() to RCE

May 27, 2026 12 min read

Vulnerability Research

CVE-2024-52577 Apache Ignite RCE via Deserialization Exploit

May 26, 2026 10 min read

Vulnerability Research

CVE-2025-54539: Apache ActiveMQ NMS AMQP Deserialization Policy Bypass to RCE

May 19, 2026 11 min read

Vulnerability Research

Electron app security risks – Part 2: Real-world RCE chains in Discord and Element

May 8, 2026 26 min read

Vulnerability Research

CVE-2025-57738: Apache Syncope Groovy Injection RCE

Apr 20, 2026 6 min read

Vulnerability Research

CVE-2024-52012 Apache Solr Path Traversal RCE Attack

Apr 9, 2026 9 min read