Bypassing XSS Filters: Techniques and Solutions In the ever-evolving landscape of web security, Cross-Site Scripting (XSS) stands as one of the most... 2023-8-21 00:45:10 | 阅读: 34 | 收藏 | Bug Bounty in InfoSec Write-ups on Medium - infosecwriteups.com attackers payload bypass malicious

Reversing WordPress CVEs: Baby Steps Hey all! My first post in a long time. While this isn’t a super brainy one, reproducing it was surel... 2023-8-21 00:38:53 | 阅读: 16 | 收藏 | Bug Bounty in InfoSec Write-ups on Medium - infosecwriteups.com bookit wordpress booking appointment retrieves

An IDOR leads join any group makes me $2,500 IDOR stands for “Insecure Direct Object References.” It’s a type of security vulnerability that occu... 2023-8-19 03:29:30 | 阅读: 32 | 收藏 | Bug Bounty in InfoSec Write-ups on Medium - infosecwriteups.com attacker c2mid invited bbbb invite

Findings in Swiggy’s Codebase: Memory Leak and Google Maps API Key Exposure. Greetings, Infosec aficionados! Today, we’re diving into the Swiggy’s tech oopsies, featuring not on... 2023-8-19 03:28:34 | 阅读: 25 | 收藏 | Bug Bounty in InfoSec Write-ups on Medium - infosecwriteups.com memory swiggy github valgrind

Epic Bug Hunting Failures Hey People, I am Varshini Ramesh trying to be a Security analyst from years!). So When I started bug... 2023-8-19 03:28:12 | 阅读: 53 | 收藏 | Bug Bounty in InfoSec Write-ups on Medium - infosecwriteups.com varshini ramesh blunders scopes laugh

Mastering the Realm of GraphQL Exploitation Hey Infosec mates,In this blog, we embark on a journey about Hacking GraphQL. Whether you’re a curio... 2023-8-13 20:1:14 | 阅读: 17 | 收藏 | Bug Bounty in InfoSec Write-ups on Medium - infosecwriteups.com username carlos oftype

Kali linux is Missing from Boot Menu Hello learners, hope you all are doing well today we are going to discuss an error or misconfigurati... 2023-8-13 20:0:39 | 阅读: 14 | 收藏 | Bug Bounty in InfoSec Write-ups on Medium - infosecwriteups.com efi umount firmware devsudo reinstall

CVE-2023–38646 — Metabase Pre-Auth RCE Metabase, a widely-used business intelligence platform that lets users explore and learn from their... 2023-8-13 19:59:34 | 阅读: 97 | 收藏 | Bug Bounty in InfoSec Write-ups on Medium - infosecwriteups.com 38646 metabase attackers security

Inside the XSS Vulnerability: How to Understand and Protect Yourself Cross-Site Scripting (XSS) is one of the most prevalent and dangerous vulnerabilities in web applica... 2023-8-13 19:54:22 | 阅读: 18 | 收藏 | Bug Bounty in InfoSec Write-ups on Medium - infosecwriteups.com malicious attacker inject viewed

Swagger XSS Mass Hunting In the name of AllahHi guys, in this write-up, I’m gonna explain my own approach towards Swagger XSS... 2023-7-31 11:43:38 | 阅读: 37 | 收藏 | Bug Bounty in InfoSec Write-ups on Medium - infosecwriteups.com swagger httpx ffuf nuclei stepnow

Bypassing email verification of high-profile tech company ($$$) Hi guys, after almost a year, I thought I should create a new write-up. Today, I’m gonna show you th... 2023-7-31 11:42:6 | 阅读: 13 | 收藏 | Bug Bounty in InfoSec Write-ups on Medium - infosecwriteups.com bypass censored burp guys gonna

Bug Bounty Writeup: $2500 Reward for Session Hijack via Chained Attack A detailed Bug Bounty Writeup explaining a session hijack vulnerability that was exploited using Cro... 2023-7-31 11:19:34 | 阅读: 22 | 收藏 | Bug Bounty in InfoSec Write-ups on Medium - infosecwriteups.com payload u003ce videoid 26tab srcdoc

Solving the HTB CTF — Broken Authentication Before attempting to launch any brute force attacks, the first step is to create a legitimate user a... 2023-7-31 11:19:25 | 阅读: 27 | 收藏 | Bug Bounty in InfoSec Write-ups on Medium - infosecwriteups.com rockyou wordlists proceed hotmail criteria

Unraveling the Complexity of Second-Order SQL Injection Attacks: A Comprehensive Guide SQL injection attacks have been a persistent threat in the realm of web application security for yea... 2023-7-31 11:19:7 | 阅读: 16 | 收藏 | Bug Bounty in InfoSec Write-ups on Medium - infosecwriteups.com injection database malicious username security

Exploiting Non-Cloud SSRF for More Fun & Profit Hi Everyone, This is Basavaraj, Back again with another SSRF Writeup :) You can check my older write... 2023-7-31 11:10:50 | 阅读: 12 | 收藏 | Bug Bounty in InfoSec Write-ups on Medium - infosecwriteups.com basu 255172 exploring ssrf intruder

Linking the Unlinked: A Deep Dive into the Art of Vulnerability Chaining As bug bounty hunters, we often traverse the cyber wilderness seeking vulnerabilities that may lead... 2023-7-31 11:9:25 | 阅读: 16 | 收藏 | Bug Bounty in InfoSec Write-ups on Medium - infosecwriteups.com chaining trivial thrill dissect

WormGPT: Is it Vulnerable? A few days ago, news was published about a new tool called WormGPT which doesn’t have the limitation... 2023-7-24 13:56:53 | 阅读: 14 | 收藏 | Bug Bounty in InfoSec Write-ups on Medium - infosecwriteups.com wormgpt chatgpt ssti 0x169264 proxy

How I Hacked the Department of Telecommunications? Hi hackers,My name is Krishnadev P Melevila, To know more about me, Just search “Who is Krishnadev P... 2023-7-24 13:55:58 | 阅读: 20 | 收藏 | Bug Bounty in InfoSec Write-ups on Medium - infosecwriteups.com krishnadev nciipc wpc php

Breaking Down SSRF on PDF Generation: A Pentesting Guide Hello Hackers, I Hope you guys are doing well and hunting lots of bugs and dollars !So today’s artic... 2023-7-24 13:44:49 | 阅读: 48 | 收藏 | Bug Bounty in InfoSec Write-ups on Medium - infosecwriteups.com library ssrf payload dotted decimal

Decoding Puzzled XSS: Unveiling the Hidden Vulnerability Hello everyone. Shlok (pphreak_100) this side. This is my first published writeup and hence any sugg... 2023-7-24 13:31:34 | 阅读: 23 | 收藏 | Bug Bounty in InfoSec Write-ups on Medium - infosecwriteups.com php httpx payload subfinder fpevcg