Author: XAdmin
-
Breaking Vercel’s Clone URL with a Simple XSS Exploit
•
During my exploration of Vercel’s platform, I discovered a reflected XSS vulnerability in the “clone project” functionality. This…
-
Finding WordPress Vulnerabilitieson CarGurus with WPScan
•
While exploring CarGurus’ bug bounty program, I discovered a reflected XSS vulnerability on their subdomain dealercentre.cargurus.co.uk. This writeup…
-
N45HTCTF2023
•
N45HTCTF2023 | “Cyber Security and Indonesian History” N45HT held a CTF (Capture the Flag) event to celebrate independence…
-
Reflected XSS Hidden Input in AT&T
•
During my testing of AT&T’s common login page, I discovered a reflected XSS vulnerability in the transactionID parameter.…
-
N45HT Vulnerability Disclosure Program
•
No technology is perfect, and N45HT believes that working with skilled security researchers across the globe is crucial…
-
XSSR: An automatic XSS scanner
•
Is an automatic Cross-site Scripting scanner application with Website, Chrome Extensions, and Windows Desktop platforms. Get in touch:
-
$300 Bounty for Exploiting DOM-based XSS
•
While analyzing XING’s event management platform, I identified a reflected XSS vulnerability in the way event IDs are…
Recent Posts
- Critical SQL Injection in a Major Indonesian Web Hosting Platform
While exploring vulnerabilities in a major web hosting company in… Read more: Critical SQL Injection in a Major Indonesian Web Hosting Platform - Breaking Vercel’s Clone URL with a Simple XSS Exploit
During my exploration of Vercel’s platform, I discovered a reflected… Read more: Breaking Vercel’s Clone URL with a Simple XSS Exploit - Bypassing Razer’s WAF for XSS
While testing Razer’s web application, I identified an XSS vulnerability… Read more: Bypassing Razer’s WAF for XSS - Finding WordPress Vulnerabilitieson CarGurus with WPScan
While exploring CarGurus’ bug bounty program, I discovered a reflected… Read more: Finding WordPress Vulnerabilitieson CarGurus with WPScan - N45HTCTF2023
N45HTCTF2023 | “Cyber Security and Indonesian History” N45HT held a… Read more: N45HTCTF2023
Social Media
Advertisement
Tags
API Bug Bounty Capture The Flag Cross-site Scripting CTF ExifTool HTML JavaScript Open Redirection PHP SQL Injection VDP WAF Web Application Firewall XSS XSSR XSSRush