Portswigger — Basic server-side template injection Solution What is SSTI? Server-side template injection is a vulnerability where the attacker injects malicious inpu
Read MoreFirst, let’s address the question of why it is necessary to write a clear report. A clear report is essential for effective communication, ensures that the appropriate steps a
Read MoreHey guys I am back again with another interesting bug bounty writeup. In this write-up, I am going to tell you about my recent finding on a VDP. Due to the company’s policy, I
Read MoreBug Bounty Writeup about DOM XSS via JSONP + Parameter pollution Photo by Pepi Stojanovski on Unsplash Hello 👋 This is my first and last Bug Bounty Writeup this ye
Read MoreHello people, Here I am sharing another four-digit write-up which is one of my very old findings. If you haven’t read my previous writeup about how I was able to bypass a stro
Read MoreModifying any users custom profile links Photo by Brett Jordan on Pexels IDOR, Insecure Direct Object Refference is a broad yet potentially a critical vulnerability. T
Read More