Microsoft Apache Solr RCE Velocity Template | Bug Bounty POC
Hey guys so this blog post is about RCE issue reported to Microsoft bug bounty program, Remote Code execution issue existed in microsoft.com subdomain running Apache Solr. I’ll try...
Getting Started in Android Apps Pen-testing (Part-1)
Hey Everyone, My name is M.Qasim Munir and this is my first blog article that I’m writing about getting started in android apps pen-testing. I hope this article will help...
Hacking SMS API Service Provider of a Company |Android App Static Security Analysis | Bug Bounty POC
Hey guys so this blog post is about doing static analysis of an Android App, And due to insecure storage of SMS API credentials I was able to Takeover the SMS API here’s a Short POC of the issue.
Exploiting Insecure Firebase Database!
Hey guys so this blog post is about Exploiting Insecure Firebase Databases, due to Improper set security rules one can write data to the database in certain conditions here’s a...
Improper Input Validation | Add Custom Text and URLs In SMS send by Snapchat | Bug Bounty POC
Hey guys so this blog post is about an Issue in Snapchat’s Website, due to Improper Input Validation one can add custom text & urls in SMS send by Snapchat...
User Account Takeover via Signup Feature | Bug Bounty POC
Hey guys so this blog post is about a User Account Takeover issue that i discover. the bug was an Account Takeover issue that was found in Signup & Switch...
How I was Able To Bypass Email Verification
Hello Masters and Learner I hope you are doing well and always put your efforts to secure the world so that no can get benefits unethically. the main reason why...
Hacking a Company Through help desk – Ticket Trick | Bug Bounty POC
Hey, So First of all before i start writing about this issue i want you guys to read the blog about Ticket Trick it was written by Inti De Ceukelaire (Thanks to him...
P1 Like a Boss | Information Disclosure via Github leads to Employee Account Takeover | Bug Bounty POC
Hey Guys, So This blog is a short blog about a P1 issue i found in a site it was a really simple and maybe a common issue, So...
Privilege Escalation like a Boss
Hello guys, This is Jay Jani and after a long time, I am back with one of my finding. This one is simple Privilege Escalation on a private program of...