Content Type Forcing – The XSS you may have missed.
~#: Introduction It is pretty well known that some Cross Site Scripting vulnerabilities can be browser depended. For example in
Continue reading
Category: #bugbounty
Bug bounty Write Ups and Tips!
Exploiting File Uploads Pt. 2 – A Tale of a $3k worth RCE.
#TL;DR; In this post I show how I was able to find a Remote Code Execution vulnerability on a private
Continue reading
Exploiting File Uploads Pt. 1 – MIME Sniffing to Stored XSS #bugbounty
Some tips and tricks on exploiting Image File Uploads to achieve Stored XSS.
Continue reading
Recent Comments