自我介绍
下水道玉玉阴湿老鼠人,主攻web安全/SAST/LLM4Security。我非常喜欢写博客,从大一开始,这个网站就一直陪伴着我,我过去的一些文章:fushulingの年度文章
同时我也是优秀的 CTF 战队 SU 的成员,我们团队仍在持续招人中,欢迎各位高手加入,发送个人简介至:suers_xctf@126.com 或者直接联系 baozongwi QQ:2405758945。
教育经历
- 重庆邮电大学-信息安全-本科(2021.06~2025-06)
- 复旦大学-secsys-研一(2025.09至今)
工作经历
- 小红书-情报与攻防实验室-实习生(2023.07~2023.12)
联系方式(黑产勿扰)
欢迎交流或者换友链
- 邮箱:fushuling233@qq.com
- Github:https://github.com/Fushuling
- QQ:2425404240
Project
- A PHP taint analysis tool that helped me get a lot of CVE and CNVD
- https://github.com/Fushuling/TaintScaner/
- Github 150+ star
- Make jdbc great again!!
- https://github.com/yulate/jdbc-tricks/
- Github 500+ star
Service
- Sub-Reviewer: Usenix Security (2026)
- TA for Class “System Security: Attacks and Defenses”, Fudan University, 2025
Honors & Awards
- 2025 – Ranked first in the 9th XCTF League standings(@SU)[Reference]
- 2025 – XCTF Regional Competition Outstanding Partner – Star Project Award(@SU)
- 2025 – Fudan University Open Source Pioneer Award(@Whitzard-UABVuln)[Reference]
- 2024 – Annual Glory Master of Spring and Autumn Cloud Realm
- 2023 – Annual Glory Master of Spring and Autumn Cloud Realm [Reference]
Selected RCEs
- DataEase(Github 22k+ star,Gitee’s Most Valuable Open Source Project)
- CVE-2025-32966:DataEase H2 JDBC RCE
- CVE-2025-49003:DataEase H2 JDBC RCE Bypass
- CVE-2025-57772:DataEase H2 JDBC RCE Bypass’s Bypass
- jsherp(Gitee 13k+ star,Gitee’s Most Valuable Open Source Project)
- CVE-2025-60800:jsherp unauthorized rce
- CVE-2025-60801:jsherp unauthorized rce bypass