Hacked.be

About Me

Hello, I'm Rein Daelman, welcome to my blog! I'm a security researcher and freelance pentester.

My CVEs (12)

A list of my published CVEs.
CVE IDDescriptionSeverity
CVE-2025-64419Coolify - Command injection in project git sourceCritical
CVE-2025-64424Coolify - Command injection via docker-compose.yaml parametersCritical
CVE-2024-13887Business Directory Plugin - Easy Listing Directories for WordPress <= 6.4.14 - Insecure Direct Object Reference to Listing Arbitrary Image AdditionMedium
CVE-2024-13736Pure Chat – Live Chat & More! <= 2.4 - Reflected Cross-Site Scripting via purechatWidgetName ParameterMedium
CVE-2024-9504Booking calendar, Appointment Booking System <= 3.2.15 - Unauthenticated Stored Cross-Site Scripting via SVG File UploadHigh
CVE-2024-8856Backup and Staging by WP Time Capsule <= 1.22.21 - Unauthenticated Arbitrary File UploadCritical
CVE-2024-9417Hash Form - Drag & Drop Form Builder <= 1.1.9 - Unauthenticated Limited File UploadMedium
CVE-2024-8657Garden Gnome Package <= 2.2.9 - Authenticated (Contributor+) Stored Cross-Site ScriptingMedium
CVE-2024-45793XSS on Confidant API endpointsMedium
CVE-2023-6987String Locator <= 2.6.5 - Reflected Cross-Site ScriptingMedium
CVE-2023-6882Simple Membership <= 4.3.8 - Reflected Cross-Site Scripting Vulnerability via environment_modeMedium
CVE-2023-46154E2Pdf <= 1.20.18 - Authenticated (Administrator+) PHP Object InjectionHigh
Loading reputation…
“trein has submitted a number of very well written and valuable reports which helped us better secure Mozilla VPN. The communication is also clear and professional, thank you for all your contributions.”
Mozilla

Mozilla via HackerOne

Write-ups

PromptPwnd: Prompt Injection Vulnerabilities in GitHub Actions Using AI Agents

View on Aikido
PromptPwnd: Prompt Injection Vulnerabilities in GitHub Actions Using AI Agents

How I hacked Google's Gemini CLI, and numerous other fortune 500 companies, via prompt injections in GitHub Actions.

Dec 4, 2025

Mozilla VPN Clients: RCE via file write and path traversal

View on HackerOne

How I got RCE on the Mozilla VPN client via a file write and path traversal through a websocket connection.

Feb 15, 2025

CVE-2024-9504 - Stored XSS via SVG File Upload

CVE-2024-9504 - Stored XSS via SVG File Upload

CVE-2024-9504 is a security flaw in the 'Booking calendar, Appointment Booking System' WordPress plugin. The vulnerability allows attackers to upload SVG files, resulting in stored XSS.

Nov 30, 2024Rein Daelman

CVE-2024-8856 - Unauthenticated RCE via Arbitrary File Upload

CVE-2024-8856 - Unauthenticated RCE via Arbitrary File Upload

Today, I wanted to talk about CVE-2024-8856, a critical vulnerability I found and reported through WordFence. The issue was found in the WP Time Capsule plugin, which has over 20,000 active installations.

Nov 20, 2024Rein Daelman