i don’t waste time by talking about myself …i gonna share my experience of a bug “web cache poisioning” in bug bounty as usually i was pentesting on private sites i saw there my paraminer shows an unkeyed url with secret url Before exploiting part i wanna share my thoughts...
[Read More]
How_i_was_able_to_pawned_website_via_escilating_webcache deception to rce
hello folks ! here is my article of how i was able to exploit web cache deception to obtain rce :3 i was doing resarch on web cache deception and i decide to penetst it on real web then i found a website which was vulnerable to web cache deception...
[Read More]
Authentication_token_bypass Leads Too_idor
here is the article how i was able to bypass authentication token and able to exploit idor and add any user to add events of website ..before coming on main topic that how i find the vulnerablity let me clear your core concepts about authorization tokens
[Read More]
Web_cahe_posioning_to_xss_and_ssrf
i don’t waste time by talking about myself …i gonna share my experience of a bug “web cache poisioning” in bug bounty as usually i was pentesting on private sites i saw there my paraminer shows an unkeyed url with secret url Before exploiting part i wanna share my thoughts...
[Read More]
How_i_was_able_to_pawned_website_via_escilating_webcache deception to rce
hello folks ! here is my article of how i was able to exploit web cache deception to obtain rce :3 i was doing resarch on web cache deception and i decide to penetst it on real web then i found a website which was vulnerable to web cache deception...
[Read More]
Authentication_token_bypass Leads Too_idor
here is the article how i was able to bypass authentication token and able to exploit idor and add any user to add events of website ..before coming on main topic that how i find the vulnerablity let me clear your core concepts about authorization tokens
[Read More]