Brian
LightNews LightNews
hoyahaxa.bsky.social
Brian
@hoyahaxa.bsky.social
13 followers 45 following 6 posts
Security things, mostly. Expert in a dying field. I guess I'm posting on two platforms now. Blog -> https://hoyahaxa.com/
Posts Replies Media Videos
hoyahaxa.bsky.social
I'll be speaking at @districtcon.bsky.social in January 2026. Come find out about some new language-level vulnerabilities in Adobe ColdFusion. Looks like a great selection of talks!
October 28, 2025 at 1:44 PM
hoyahaxa.bsky.social
New Blog Post: Sandbox Security Escapes in ColdFusion and Lucee (CVE-2025-30288 and CVE-2024-55354)

www.hoyahaxa.com/2025/06/sand...
Sandbox Security Escapes in ColdFusion and Lucee (CVE-2025-30288 and CVE-2024-55354)
Hoya Haxa: A Security Research Blog
www.hoyahaxa.com
June 25, 2025 at 11:32 AM
hoyahaxa.bsky.social
The slides from my CFCamp 2025 (@cfcamp) talk are now online -- Understanding CFML Vulnerabilities, Exploits, and Attack Paths

www.hoyahaxa.com/2025/06/cfca...
CFCamp 2025 Slides - Understanding CFML Vulnerabilities, Exploits, and Attack Paths
Hoya Haxa: A Security Research Blog
www.hoyahaxa.com
June 25, 2025 at 1:50 AM
hoyahaxa.bsky.social
New Blog Post: An SSRF to LFI Payload for PDF Generators (CVE-2024-34112 and beyond)

www.hoyahaxa.com/2025/01/an-s...
An SSRF to LFI Payload for PDF Generators (CVE-2024-34112 and beyond)
Hoya Haxa: A Security Research Blog
www.hoyahaxa.com
January 14, 2025 at 1:44 AM
hoyahaxa.bsky.social
New Blog Post: An Initial Analysis of Adobe ColdFusion CVE-2024-53961 - www.hoyahaxa.com/2024/12/an-i...
An Initial Analysis of Adobe ColdFusion CVE-2024-53961
Hoya Haxa: A Security Research Blog
www.hoyahaxa.com
December 26, 2024 at 8:28 PM
hoyahaxa.bsky.social
hello world.
December 26, 2024 at 8:20 PM