PinnedPublished inInfoSec Write-upsUnveiling Remote Code Execution in AI chatbot workflows 💵Hi Readers 👋, this article goes through a remote code execution finding worth $$$$ that I found on one of the popular chatbot platforms so…Aug 5, 2024101Aug 5, 2024101
PinnedPublished inInfoSec Write-ups$$$ Bank 🏦Verification Bypass(Broken Object Level Authorisation)Hey Readers, 👋, Hope you are doing great,Feb 24, 20221752Feb 24, 20221752
Published inInfoSec Write-upsInteresting Stored XSS in sandboxed environment to Full Account TakeoverHi readers 👋, Hope everyone of you doing well,Feb 27, 20231201Feb 27, 20231201
Published inInfoSec Write-upsFrom Shodan Dork to Grafana 📊Local File InclusionHi readers 📖, This is my new article on local file inclusion I found using shodan recon and further exploiting grafana service.Nov 11, 20223112Nov 11, 20223112
Published inInfoSec Write-upsMassive Users Account Takeovers(Chaining Vulnerabilities to IDOR)😲Hello hunters 👋✌ this is my 7th writeup 🧾,Dec 25, 20212952Dec 25, 20212952
Published inInfoSec Write-upsHacktoberFest2k21 vulnerability: How users metadata can be changed via Auth JWT tokens leaking from…Hello Awesome readers 👨💻✌✌,Nov 3, 202197Nov 3, 202197
Published inInfoSec Write-upsEasy Premium Account Access and Admin role escalation via Object manipulation in the server…Hey infosec Geeks ✌,Oct 5, 2021761Oct 5, 2021761
Published inInfoSec Write-upsCookie Stealing via Clickjacking using Burp collaboratorHello 👋 infosec geeks 👨💻 this is my 4th blog post,Sep 21, 202177Sep 21, 202177
Published inInfoSec Write-upsHTML Injection via user agent leads to website distortion revealing backend code.Hello Awesome readers,Aug 19, 20218Aug 19, 20218
How Github Dork Help me to Access Full FTP serverHello cybersecurity geeks,Aug 11, 20211071Aug 11, 20211071
Published inInfoSec Write-upsReset password Token led to account takeoverHello cybersecurity geeks,Aug 11, 20211Aug 11, 20211
