Hello friends, Here is Part 2 of Bug Hunting Writeup Summary ->

Title: PayPal Inc Bug Bounty - Arbitriary File Upload Vulnerability & Remote Code Execution
URL: https://www.vulnerability-lab.com/get_content.php?id=2180

Hi sobat, bagaimana kabarnya ? semoga senantiasa sehat selalu dan diberikan kelancaran dalam aktifitasnya. ^-^

Found HTML Injection in a web form but the CSP was blocking execution. I noticed *.google.com was allowed which is common for Google Analytics. Hosted an xss.js payload on Google Drive and found the raw download link. Passed that in to the script src location…

Encoder to bypass WAF filters using XOR operations. - devploit/XORpass

Task Scheduler service loads a non-existing DLL enabling persistence as `NT AUTHORITY\SYSTEM`.

POI - #PHP Object Injection Leading zeroes & Arbitrary Chars Example: O:008:"stdClass":0001**s:006:"bypass";b:1;} (almost anything can be used in ** ) #bypass #bugbountytip

Bypassing CSRF Header Protection and HTTPOnly Cookie

Hello everybody!

A ready to use JSONP endpoints/payloads to help bypass content security policy (CSP) of different websites. - zigoo0/JSONBee

We highly recommend upgrading to Kubernetes builds 1.14.8, 1.15.5 or 1.16.2 to address two recently patched Kubernetes vulnerabilities.

Summary NFC beaming of applications between devices using Android OS bypasses some security controls (the “install unknown application” prompt). A rogue device like a payment terminal c…

This is North Korea's malware used in the attack on India's nuclear power plant. They had infiltrated the South Korean military's internal network in 2016 and stole classified information. And they once destroyed South Korean broadcasting stations and banking…

Look at you go with your badass hacker self, just hackity-hack-hackin’ away. As the quote from Sun Tzu’s Art of War suggests, however, if you can defeat your opponent without a fight or little-to-no…

CVE-2019–18653 & CVE-2019–18654: The story when Reflected XSS was triggering from SSID Name (It also affected AVG AntiVirus since basically

scan for NTLM directories. Contribute to nyxgeek/ntlmscan development by creating an account on GitHub.

Getting snagged by AV using regsvr32 /i:http(s)? Signatures are based on utilizing http within command. Don't use http or chain multiple commands together for same effect. https://t.co/ZbnYL00may