Just Another Simple Write-Up
Collection of the bug that specifically found at few application that written in Bahasa
Atlassian Confluence 3.4.x - Error Page Cross-Site Scripting
Twitter disclosed a bug submitted by zlz: https://hackerone.com/reports/712979 - Bounty: $560 #hackerone #bugbounty
Effortlessly finding Cross Site Script Inclusion (XSSI) & JSONP for bug bounty
The Bug That Exposed Your PayPal Password
Yahoo — Two XSSi vulnerabilities https://link.medium.com/jFkPeGsUv3
The 27th HTB box I solve in preparation for the OSCP.
Initial Foothold - vsftpd 2.3.4 backdoor
Privilege Escalation - Loose permissions and insecure storage of Certificate Authority (CA) key + LFI + security misconfiguration of scheduled task.