August 2025 - appsecwriteups.com

Skip to content

appsecwriteups.com

Learning AppSec Through Android & Web Vulnerability Writeups

Home
Android
Web
Desktop
Shielded

Home
Android
Web
Desktop
Shielded

Search for:

Home » Archives for August 2025

CSRF Account Deletion: How I Turned an “Excluded” Bug Into $87 USD Bounty

Posted inWeb

CSRF Account Deletion: How I Turned an “Excluded” Bug Into $87 USD Bounty

Posted by

By Jivan Magare August 13, 2025

My name is Jivan, and in this case study, I will present a detailed analysis…

Search

Archives

October 2025
August 2025
July 2025
June 2025
May 2025

Recent Comments

Jivan Magare on How I Found a No Rate Limit Vulnerability on a Login Endpoint, Earned a 100€ Bounty, and My Approach to Testing for No Rate Limit Issues
Shubham on How I Found a No Rate Limit Vulnerability on a Login Endpoint, Earned a 100€ Bounty, and My Approach to Testing for No Rate Limit Issues
Jivan Magare on CSRF Account Deletion: How I Turned an “Excluded” Bug Into $87 USD Bounty
anonymous on CSRF Account Deletion: How I Turned an “Excluded” Bug Into $87 USD Bounty
Jivan Magare on How I Found a No Rate Limit Vulnerability on a Login Endpoint, Earned a 100€ Bounty, and My Approach to Testing for No Rate Limit Issues

Recent Posts

Protected: My First Day Pentesting Thick‑Client Apps — Discovered a Critical IDOR in a Desktop Client with a Full Black‑Box Approach
How I Found a Critical Privilege Escalation That Let an Unprivileged User Become Admin and Earn $579 USD Bounty
CSRF Account Deletion: How I Turned an “Excluded” Bug Into $87 USD Bounty
How to Identify and Handle Firebase Security Misconfigurations A Case Study
Security Testing via Black-Box Approach: Two Important Android App Issues Discovered Across the Same Company

Categories

Android
Desktop
Web

🔗Follow Me

LinkedIn

💬Contact Us

📩 Have questions, suggestions, or found a security issue? Reach out to us at: contact@appsecwriteups.com

🛡️Privacy Policy

Copyright 2025 — appsecwriteups.com. All rights reserved. appsecwriteups.com