PHPMailer < 5.2.18 Remote Code Execution [CVE-2016-10033]
http://seclists.org/fulldisclosure/2016/Dec/78

黑云压城城欲摧 - 2016年iOS公开可利用漏洞总结
http://paper.seebug.org/159/

分享插件AddThis导致的DOM XSS
http://paper.seebug.org/157/

關於 Javascript {} + {}
https://segmentfault.com/a/1190000007929295

Python并发编程之线程池/进程池
https://segmentfault.com/a/1190000007926055

Rails SQL Injection
https://rails-sqli.org/