Mylabs COVID-19 Antigen Test Can Cost You Your PII Data So 2 weeks ago I am having cough and cold and I am about to get vaccinated. So I though to get COVID tested before vaccination. Then I got to know th…
Buying A Gift Can Cost You Your PII Data Almost 1 year ago I reported one PII Data leak to Winni Bug Bounty Program. After 20+ follow up mail I am disclosing the issue though Winni t…
From Github Recon To Account Takeover Hi everyone , after a long time I am doing a write-up on GitHub recon which leads to full account takeover . Few days ago I got a private invite whe…
How I Was Able To Takeover All User Account And Admin Panel Hi everyone, This is my last write-up of 2018, so 6 months ago I got the invite from a Hackerone private program, the program has a huge scope, so …
A Tale Of Two Simple Account Takeover Hi everyone, so a few months ago I got the invite from a Hackerone private program, the program has huge scope. So I started my recon process. Foun…
Buffer Authentication Bypass Hi everyone , here is one of my finding on Buffer.com . Where i managed to bypass the authentication So basically the authentication work flow …