Skip to content
View 49016's full-sized avatar
🏳️‍⚧️
trans rights or catgirl bites
🏳️‍⚧️
trans rights or catgirl bites
21 followers · 36 following
  • [yours?]
  • sw germany

Achievements

Achievement: Pair ExtraordinaireAchievement: Pull SharkAchievement: Quickdraw

Achievements

Achievement: Pair ExtraordinaireAchievement: Pull SharkAchievement: Quickdraw

Highlights

Block or report 49016

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
49016/README.md

writing a bio is hard, putting a few numbers here is easier:

  • CTF player in a team with CTFTime ratings of 477 in 2023, 466 in 2024 and 189 in 05/2025
  • code execution in encryption tool age: GHSA-32gq-x56h-299c [moderate], GHSA-4fg7-vxc8-qx5w [moderate], GHSA-47h8-jmp3-9f28 [7.7], CVE-2024-56327 [CVSS3.1 9.8 (CISA-ADP)], RUSTSEC-2024-0432 [code-execution], RUSTSEC-2024-0433 [code-execution]
  • undisclosed vuln in google chrome: CRBUG-40063020 [P1]
  • browser permission bypass in microsoft edge: CVE-xxxx-xxxxx [CVSS3.1 6.0 (MS)]
  • CSP'd XSS in federated social media platform mastodon: GHSA-x2rc-v5wx-g3m5 [low; XSS exploitable downstream though]
  • supply chain takeover via insecure CI with R/W permissions: GHSA-mhp7-pvf2-wv9h [critical]
  • path traversal + CSP bypass + path traversal for UI hijacking on social media platform: H1-1606027 [high]
  • undisclosed vulns in social media platform: H1-1501648 [medium]; H1-1523113 [medium]; H1-1523113 [medium]; H1-1933316 [medium]; H1-1775168 [medium]; H1-2005491 [medium]; H1-1562836 [medium]; H1-2269189 [medium]
  • domain takeover in undisclosed product: H1-1775761 [medium]
  • broken authentication in health app: H1-1919463 [high]
  • & a ton more, most of which can't even be mentioned here x3

Popular repositories Loading

  1. misspilot misspilot Public

    Forked from misskey-dev/misskey

    🌎 A completely free and open interplanetary-microblogging platform 🚀

    TypeScript 1

  2. fusedom fusedom Public

    PLEASE DO NOT RUN

    JavaScript 1 1

  3. battleships battleships Public

  4. 49016 49016 Public

    Config files for my GitHub profile.

  5. nixpkgs nixpkgs Public

    Forked from NixOS/nixpkgs

    Nix Packages collection & NixOS

    Nix

  6. mobile-nixos-op6 mobile-nixos-op6 Public

    Forked from kurtmorris/mobile-nixos-spacewar

    don't expect this to work lol

    C