add unserialize flow

content/en/docs/getting-started/vulnerability-reports.md

@@ -54,6 +54,11 @@ toc: true
 - [Article - PHP filter chains: file read from error-based oracle](https://www.synacktiv.com/publications/php-filter-chains-file-read-from-error-based-oracle)
   - [Github - synacktiv/php_filter_chains_oracle_exploit](https://github.com/synacktiv/php_filter_chains_oracle_exploit)
 
+## Insecure Deserialization
+
+- [Article - Finding PHP Serialization Gadget Chain in PHP](https://www.xanhacks.xyz/p/php-gadget-chain/)
+- [Article - Gadgets chain in Wordpress](https://fenrisk.com/publications/blogpost/2023/11/22/gadgets-chain-in-wordpress/)
+
 ## XXE
 
 - [CTF - Client-Side XXE to exfiltrate a page](https://github.com/dicegang/dicectf-2023-challenges/tree/main/web/impossible-xss)
@@ -83,4 +88,4 @@ toc: true
 
 - [Article - Detecting uBlock on Chrome Browser](https://blog.ankursundara.com/checking-enumerating-a-users-browser-extensions/)
 - [Article - Exploitation of iCalendar standard](https://spaceraccoon.dev/exploiting-icalendar-properties-enterprise-applications/)
-- [Article - Uncovering Flaws in Open-Source Vulnerability Disclosures](https://blog.aquasec.com/50-shades-of-vulnerabilities-uncovering-flaws-in-open-source-vulnerability-disclosures)
+- [Article - Uncovering Flaws in Open-Source Vulnerability Disclosures](https://blog.aquasec.com/50-shades-of-vulnerabilities-uncovering-flaws-in-open-source-vulnerability-disclosures)