Published inInfoSec Write-upsHow I Leveraged HTML Injection to Create an Account Using Someone Else’s EmailHTML Injection Oct 27, 20241Oct 27, 20241
Published inInfoSec Write-upsHow Sensitive Information Disclosure Can Lead to Account TakeoverDuring a recent security assessment, I stumbled upon a critical account takeover vulnerability on a website that stemmed from an Insecure…Oct 21, 2024Oct 21, 2024
Published inInfoSec Write-upsHow I Found a Subdomain Takeover Bug and Earned a $500 BountyRecently, I discovered a subdomain takeover vulnerability on a website, reported it, and earned a $500 bounty. Here’s how I found the bug:Oct 19, 2024Oct 19, 2024
