Franks Electric Dreams

 OPERATION GHOSTSLIME - CVE PRIOR ART DECLARATION Researcher: frankSx Date: March 1, 2026 GPG: 810197FF62E3CD8BE21BA0D51B4A3AB87F125B59 Email: fixes.it.frank@gmail.com Five (5) vulnerabilities discovered in Kimi K2.5 AI Platform: 1. Pyodide Sandbox Escape (Slime Mold)    SHA256: 3c75410423460f467ee0cd2f407fc6996840a416abdb2fd99c142a443942cc07 2. WebSocket Internal API Enumeration (172.24.128.5)    SHA256: e588aee3827bef7e39f7952b333703392b93d72341bed6eacea8bac0adef8c19 3. WASM Debugger Hook Privilege Escalation (Reflective Inception)    SHA256: 7ea1a7c45eb3f397a9a7577a5cc6bebd63bf65e5080c0f366473ca4f27dbfb26 4. SameSite Cookie Bypass with CORS Null Origin (The Null Gate)    SHA256: 768c67abd8f38753fa187d6a05ddbba34990f4977a1c284820baa8cb31788686 5. Browser Extension Data Exfiltration via Visual Steganography (Tesseract Overlay)    SHA256: e28cbb70ad4a0baf05e6eebdc4f11012da401ea0864ece17b1dcf21ea08c7dd1 Discovery Period: February 27 ...

Technical Vulnerability Disclosure: Blackbox VS Code Extension Author: Frank Sx Date: 21/01/2025 Subject: Technical Disclosure of Vulnerability in Blackbox VS Code Extension Overview This post serves as a formal technical disclosure of a critical security vulnerability identified in the Blackbox VS Code extension (Blackboxapp.blackboxagent) up to the latest version. The vulnerability involves self-referral exploits that could enable unauthorized users to generate and redeem referral IDs, leading to potential abuse of the referral system. Vulnerability Details Description The vulnerability is rooted in the implementation of the referral ID generation and redemption processes within the Blackbox API, specifically located at: https://file+.vscode-resource.vscode-cdn.net/home/xxxxx/.vscode-oss/extensions/blackboxapp.blackboxagent-2.8.12/webview-ui/build/static/js/main.js Identified Issues: Self-Referral Exploit: The current implementation allows any user to generate a r...

  In the wake of the COVID-19 pandemic, governments worldwide scrambled to implement financial relief measures to support their economies. Australia was no exception, but a significant vulnerability in the Australian Tax Office (ATO) system during the 2021-2022 financial year led to a staggering loss of $2 billion. This incident raises critical questions about the balance between expediency and security in government systems, as well as the potential motivations behind such oversights. The Vulnerability Unveiled The vulnerability stemmed from a change in the ATO's processes that allowed individuals to create an Australian Business Number (ABN) and register for Goods and Services Tax (GST) with minimal verification. Once an ABN was obtained, individuals could lodge their Business Activity Statements (BAS) monthly after their first submission. This meant that, in a matter of weeks, someone could claim a GST credit against their supposed business activities, leading t...

ZTE MF65 - EFS Access Method / Partial FS Dump ZTE MF65 - EFS Access Method / Partial FS Dump In this post, I’ll share my findings on accessing the internal file system of the ZTE MF65 modem. This guide will cover the steps to resolve a soft brick issue caused by directory traversal and provide insights into accessing internal files. Introduction In our previous post, we discussed the local file listing method and the necessary changes to the configuration file for continuous file listing related to SD card functions. Recently, I encountered a challenge that led to a soft brick of my device due to directory traversal on the SD card base path. The Problem When the router attempted to load the HTTPS share page, it reached the share path and SD base path, ultimately reading /mmc2/../ . This caused the device to malfunction and become unresponsive. Fortunately, I have found a solution that not only resolv...

Wikaonwi: A Factory Wi-Fi Credential Vulnerability Wikaonwi: A Factory Wi-Fi Credential Vulnerability Date: 1/21/25 9:35 PM Today, I faced a setback when I was declined a position in the cyber security field due to a prior criminal conviction related to fraud. However, I refuse to let this discourage me. Instead, I am determined to showcase my skills and resilience by releasing another piece of my work. In a future post, I will also cover the details surrounding the charges that led to this situation. This is just one step in my journey, and I won’t allow past challenges to define my future. Wikaonwi: In the ever-evolving landscape of cybersecurity, vulnerabilities can often be found in the most unexpected places. One such vulnerability has been identified in the Kaon DG2144 router, where the factory Wi-Fi password is not as random as one might expect. This flaw can lead to the easy recovery of a device's Wi-Fi ...

Command Injection Vulnerability in Kaon DG2448 & DG2144 Modems Command Injection Vulnerability in: Kaon DG2448 & DG2144 Modems Published on 7/30/24 3:17 PM Introduction In this post, I’ll be sharing my findings on a critical command injection vulnerability I discovered in the Kaon DG2448 and Kaon DG2144 modems. The vulnerability is a severe flaw that allows attackers to execute arbitrary commands with root privileges through the modems' web interface. I will explain the details of how the exploit works, the potential impact, and how users and organizations can protect themselves. The Vulnerability Overview Upon analyzing the modems’ web service, I found that several diagnostic functions are vulnerable to command injection. These functions include: Ping (under Diagnostics Tab) Traceroute (under Diagnostics Tab) NsLookup (under Diagn...