🔹 phpMyFAQ-3.1.12 CSV Injection

📆 Thu, 04 May 2023 10:45:07 GMT

#️⃣ #csv #hacking #cybersecurity #bug_bounty #vulnerability

🔹 Mass Assignment leads to the victim’s account being inaccessible forever

📆 Thu, 04 May 2023 12:37:15 GMT

#️⃣ #infosec #vulnerability #bugs #security #bug_bounty

🔹 XSS drag Drop in Google worth $6,999

📆 Thu, 04 May 2023 12:43:16 GMT

#️⃣ #bug_bounty_writeup #bug_fixes #bug_bounty_tips #bugs #bug_bounty

🔹 Take Advantage of Out-of-Scope Domains in Bug Bounty Programs

📆 Thu, 04 May 2023 12:38:48 GMT

#️⃣ #bug_bounty_tips #bugs #bug_bounty #bug_fixes #bug_bounty_writeup

🔹 Simple Account Takeover Worth $9,999

📆 Thu, 04 May 2023 12:31:19 GMT

#️⃣ #bug_bounty #bug_bounty_writeup #bugs #bug_fixes #bug_bounty_tips

🔹 Introducing SpiderSuite: An advance web security crawler

📆 Thu, 04 May 2023 14:13:06 GMT

#️⃣ #bug_bounty #pentesting #cross_platform #cyber_security_tools #cybersecurity

🔹 Introduction: How I Turned Grass into Cash at 12 y/o

📆 Thu, 04 May 2023 14:49:29 GMT

#️⃣ #young_professionals #ethical_hacker #cg_artist #myselfintroduction #bugbounty_writeup

🔹 OpenAI Allowed “Unlimited” Credit on New Accounts

📆 2023-05-04

#️⃣ #Logic_flaw

🔹 Accessing Admin Dashboard in 5 seconds: Hall of Fame.

📆 2023-05-03

#️⃣ #Default_credentials

🔹 When you're so bored, you start debugging someone else's code: bug hunting in a random Cloud-Native project

📆 2023-05-03

#️⃣ #SSTI

🔹 Securing Databricks cluster init scripts

📆 2023-05-02

#️⃣ #Privilege_escalation

🔹 CVE-2023-28231: RCE In The Microsoft Windows DHCPv6 Service

📆 2023-05-02

#️⃣ #RCE

🔹 SSD Advisory – KerioControl Remote Code Execution

📆 2023-05-02

#️⃣ #RCE

🔹 Placeholder for Dayzzz: Abusing placeholders to extract customer informations

📆 2023-05-01

#️⃣ #SSTI

🔹 Apache Solr 8.3.1 RCE from exposed administration interface

📆 2023-05-01

#️⃣ #RCE

🔹 Azure Devops CICD Pipelines - Command Injection With Parameters, Variables And A Discussion On Runner Hijacking

📆 2023-05-01

#️⃣ #CI/CD

🔹 Exploiting an Order of Operations Bug to Achieve RCE in Oracle Opera

📆 2023-04-30

#️⃣ #RCE

🔹 How I Chained an Information Disclosure Bug with SQL Injection

📆 2023-04-30

#️⃣ #SQL_injection

🔹 Avast Anti-Virus privileged arbitrary file create on virus quarantine (CVE-2023-1585 and CVE-2023-1587)

📆 2023-04-26

#️⃣ #TOCTOU

🔹 CVE-2023-23525: Get Root via A Fake Installer

📆 2023-04-20

#️⃣ #Local_Privilege_Escalation

🔹 CVE-2023-1767 - Stored XSS on Snyk Advisor service can allow full fabrication of npm packages health score

📆 2023-04-10

#️⃣ #Stored_XSS