Posts
Leak HTTP Requests through Service Worker and XSS
AVideo < 8.9 Privilege Escalation and File Inclusion that led to RCE
Hijacking an Abandoned Careem S3 Bucket
Moodle From DOM Stored XSS to Remote Code Execution
Intigriti Easter XSS Challenge Write-up
myClock XSS Challenge Solution Write-Up
Hacking In-Scope Targets via Out-of-Scope Domains
Obtaining WordPress CSRF Tokens for Fun, $1337 bounty, and CVE-2017-5489
Leaking Amazon.com CSRF Tokens Using Service Worker API
How I Hijacked Private Vimeo Videos via Flash
XSS Challenge on Hack.me: The Solution Explained
Vine Re-authentication Bypass: A Twitter Bug Bounty Report
Medium Account Takeover via XSS and CSRF Exploitation
Exploiting OAuth Vulnerabilities in Oculus
Uncovering an XSS Vulnerability in Cloudflare Services
One Payload to XSS Them All!
Blind SQL Injection in Hootsuite Learning Platform
Exploiting XSRF on Flickr to Change Photo Details
subscribe via RSS