Published inInfoSec Write-upsExploiting misconfigured OAuth to takeover accountsHi, in this writeup I will talk about two misconfigured OAuth flaws I found while looking for bugs, without further ado let’s begin.Mar 30, 2021Mar 30, 2021
Published inInfoSec Write-upsLeveraging Template injection to takeover an account.Hi, I am back again with an interesting writeup, this is about a template injection bug I reported to a private program last year.Mar 4, 2021Mar 4, 2021
Published inInfoSec Write-upsHow I leveraged an interesting CSRF vulnerability to turn self XSS into a persistent attack?Hi, today I will talk about how I leveraged an interesting CSRF vulnerability to turn self XSS into a persistent attack.Jun 1, 20204Jun 1, 20204
Published inInfoSec Write-upsHow I discovered an interesting account takeover flaw?Hi everyone, today I will talk about an interesting account takeover flaw which I found around a year back. The root cause of this issue…Jan 14, 20203Jan 14, 20203
