Posted inWeb
How I Discovered a Google Cloud Storage Bucket Misconfiguration on an Adult Site and Earned a $250 Bounty
Hello friends, I’m Jivan, and I’m back with another write-up about a Google Cloud Storage…
Posted inAndroid
How I Discovered a Critical Vulnerability via Hardcoded GCP Credentials in an Android App and Earned $700 Bounty on Cyberbay
Hello aspiring bug bounty hunters! I’m Jivan, and I’m back with another security vulnerability that…
Posted inWeb
How I Discovered an HTML Injection Vulnerability in the Origin Query Parameter of a Password Reset Email and Earned a $75 Bounty
Hello guys, I’m Jivan, and I’m back with a new write-up where I discovered an…
Posted inWeb
How I Found a No Rate Limit Vulnerability on a Login Endpoint, Earned a 100€ Bounty, and My Approach to Testing for No Rate Limit Issues
Hi friends, I’m Jivan, back with another write-up related to a No Rate Limit vulnerability.In…
Posted inAndroid
How I Discovered a High-Severity IDOR Vulnerability in an Android Hotel Booking App and Earned a $80 Bounty
Hi everyone, Jivan here!I'm back with another Android vulnerability report. In this write-up, I’ll walk…
Posted inAndroid
How I Found an OTP Bypass Vulnerability in an Android App and Was Rewarded 150€ Euros as a Bounty
Welcome to my very first bug bounty write-up! Hi, I'm Jivan — a passionate self-taught…