https://kagisosec.com/writeups/ Recent content in Writeups on KagisoSec Hugo en-us Fri, 17 Oct 2025 00:00:00 +0000 https://kagisosec.com/writeups/picomini-byp4ss3d/ Fri, 17 Oct 2025 00:00:00 +0000 https://kagisosec.com/writeups/picomini-byp4ss3d/ Bypassing a file upload filter on Apache by abusing .htaccess to execute a PHP webshell disguised as a JPEG — achieving full RCE and reading the flag.