Posted inWeb
How I Found a Critical Privilege Escalation That Let an Unprivileged User Become Admin and Earn $579 USD Bounty
Hi everyone — I’m back with a new writeup. I haven’t published for a few…
Posted inWeb
CSRF Account Deletion: How I Turned an “Excluded” Bug Into $87 USD Bounty
My name is Jivan, and in this case study, I will present a detailed analysis…
How to Identify and Handle Firebase Security Misconfigurations A Case Study
Hello friends, I'm Jivan, and welcome to my latest write-up focused on Firebase misconfiguration from…
Posted inWeb
How I Crafted a Custom CSRF Exploit to Change User Settings and Got Rewarded $50 USD Bounty
Hello guys, I hope you all are doing well. I’m Jivan, and I’m back with…
Posted inWeb
How I Discovered a Google Cloud Storage Bucket Misconfiguration on an Adult Site and Earned a $250 Bounty
Hello friends, I’m Jivan, and I’m back with another write-up about a Google Cloud Storage…
Posted inWeb
How I Discovered an HTML Injection Vulnerability in the Origin Query Parameter of a Password Reset Email and Earned a $75 Bounty
Hello guys, I’m Jivan, and I’m back with a new write-up where I discovered an…
Posted inWeb
How I Found a No Rate Limit Vulnerability on a Login Endpoint, Earned a 100€ Bounty, and My Approach to Testing for No Rate Limit Issues
Hi friends, I’m Jivan, back with another write-up related to a No Rate Limit vulnerability.In…