help@cyb4rgeek.xyz

+1 (512) 588 6950

hackerone

Home/Category: hackerone
CSRF leads to account takeover in Yahoo!
CSRF leads to account takeover in Yahoo! bez0x January 15, 2023

CSRF leads to account takeover in Yahoo!

Hi everyone!During my bug bounty journey I used to read numerous writings to learn different techniques and points of view when hunting. Most of the writings I read were from re

Read More
Strange 2FA Misconfiguration
Strange 2FA Misconfiguration bez0x January 13, 2023

Strange 2FA Misconfiguration

Hey guys I am back again with another interesting bug bounty writeup. In this write-up, I am going to tell you about my recent finding on a VDP. Due to the company’s policy, I

Read More
CRLF Injection — xxx$ — How was it possible for me to earn a bounty with the Cloudflare WAF?
CRLF Injection — xxx$ — How was it possible for me to earn a bounty with the Cloudflare WAF? bez0x December 24, 2022

CRLF Injection — xxx$ — How was it possible for me to earn a bounty with the Cloudflare WAF?

I recently discovered a CRLF injection vulnerability on a popular website. In this blog post, I will describe the vulnerability and the attack scenarios that I was able to demon

Read More
How these IDOR vulnerability earned 5000$ | Hackerone Reddit Bug Bounty
How these IDOR vulnerability earned 5000$ | Hackerone Reddit Bug Bounty bez0x December 23, 2022

How these IDOR vulnerability earned 5000$ | Hackerone Reddit Bug Bounty

Modifying any users custom profile links Photo by Brett Jordan on Pexels IDOR, Insecure Direct Object Refference is a broad yet potentially a critical vulnerability. T

Read More