Skip to content

Security Breached Blog

| One step at a time There's no need to rush It's like learning to fly! |

Menu
  • Home
  • Who Am I
  • Bug Bounty Guide
Menu

Tag: Authentication Bypass

User Account Takeover via Signup Feature | Bug Bounty POC

Posted on January 22, 2020May 22, 2022 by Muhammad Khizer Javed

Hey guys so this blog post is about a User Account Takeover issue that i discover. the bug was an Account Takeover issue that was found in Signup & Switch Accounts feature so here’s the a Short POC of the issue.   While testing i saw that there is a “Switch Accounts” Option in Application…

Read more

Hacking a Company Through help desk – Ticket Trick | Bug Bounty POC

Posted on November 5, 2018 by Muhammad Khizer Javed

Hey,   So First of all before i start writing about this issue i want you guys to read the blog about Ticket Trick it was written by Inti De Ceukelaire (Thanks to him for sharing this and help us work on it to secure more companies ). This blog is just about my experience with this issue and…

Read more

Authentication Bypass Using SQL Injection AutoTrader Webmail – Bug Bounty POC

Posted on September 10, 2018September 10, 2018 by Muhammad Khizer Javed

Hey guys Me again with a Short POC about Login Bypass Using SQL Injection to get Access to AutoTraders Webmail so lets begain the POC will be short. What happened was i was working on AutoTraders Bug Bounty Program and had reported a couple of issues but all were Duplicate so i was checking subdomains…

Read more

ZOL Zimbabwe Authentication Bypass to XSS & SQLi Vulnerability – Bug Bounty POC

Posted on September 9, 2018September 10, 2018 by Muhammad Khizer Javed

Hey Guys! Me Back with a New Post This One is about an Authentication Bypass Vulnerability in one of the subdomains of https://zol.co.zw/ ZOL Zimbabwe and Then got an XSS following with an SQLi in that Control Panel. So The Main Focus of this Blog Post will be on How i got access to the…

Read more


  • Authentication Bypass Using SQL Injection AutoTrader Webmail – Bug Bounty POC
  • My Guide to Basic Recon? | Bug Bounties + Recon | Amazing Love story.
  • Subdomain Takeover Through Expired Cloudfront Distribution | live.lamborghini.com
  • SQLi & XSS Vulnerabilities in a Popular Airlines Website!
  • SQL Injection Vulnerability bootcamp.nutanix.com | Bug Bounty POC
  • KNOXSS for Dummies! A new Detailed Guide to use KNOXSS Pro in real world

Tweets by KHIZER_JAVED47
© 2023 Security Breached Blog | Powered by Minimalist Blog WordPress Theme
 

Loading Comments...