en
Feedback
Ayrix Bytes

Ayrix Bytes

Open in Telegram
945
Subscribers
No data24 hours
-17 days
+530 days
Posts Archive
πŸ”Ή Subdomain Hijacking Of Any Qwilr’s Customer πŸ“† 2023-01-01 #️⃣ #Subdomain_takeover
πŸ”Ή Subdomain Hijacking Of Any Qwilr’s Customer πŸ“† 2023-01-01 #️⃣ #Subdomain_takeover

πŸ”Ή $500 in 5 minutes πŸ“† 2023-01-01 #️⃣ #Broken_link_hijacking
πŸ”Ή $500 in 5 minutes πŸ“† 2023-01-01 #️⃣ #Broken_link_hijacking

πŸ”Ή Bypass Premium Account Payment (GetPocket) πŸ“† 2023-01-01 #️⃣ #Payment_bypass
πŸ”Ή Bypass Premium Account Payment (GetPocket) πŸ“† 2023-01-01 #️⃣ #Payment_bypass

πŸ”Ή India’s Aadhar card source code disclosure via exposed .svn/wc.db πŸ“† 2023-01-02 #️⃣ #Source_code_disclosure
πŸ”Ή India’s Aadhar card source code disclosure via exposed .svn/wc.db πŸ“† 2023-01-02 #️⃣ #Source_code_disclosure

πŸ”Ή An amazing way to turn a xss into an ATO πŸ“† 2023-01-02 #️⃣ #XSS
πŸ”Ή An amazing way to turn a xss into an ATO πŸ“† 2023-01-02 #️⃣ #XSS

πŸ”Ή Exploiting thousands of Domains for XSS πŸ“† 2023-01-02 #️⃣ #XSS
πŸ”Ή Exploiting thousands of Domains for XSS πŸ“† 2023-01-02 #️⃣ #XSS

πŸ”Ή Instagram vulnerability : Turn off all type of message requests using deeplink (Android) πŸ“† 2023-01-02 #️⃣ #Insecure_deepl
πŸ”Ή Instagram vulnerability : Turn off all type of message requests using deeplink (Android) πŸ“† 2023-01-02 #️⃣ #Insecure_deeplink

πŸ”Ή Bypass firewalls with of-CORs and typo-squatting πŸ“† 2023-01-02 #️⃣ #CORS_misconfiguration
πŸ”Ή Bypass firewalls with of-CORs and typo-squatting πŸ“† 2023-01-02 #️⃣ #CORS_misconfiguration

πŸ”Ή Vue JS Reflected XSS πŸ“† 2023-01-03 #️⃣ #Reflected_XSS
πŸ”Ή Vue JS Reflected XSS πŸ“† 2023-01-03 #️⃣ #Reflected_XSS

πŸ”Ή Fetch Diversion πŸ“† 2023-01-03 #️⃣ #DOM_XSS
πŸ”Ή Fetch Diversion πŸ“† 2023-01-03 #️⃣ #DOM_XSS

πŸ”Ή Web Hackers vs. The Auto Industry: Critical Vulnerabilities in Ferrari, BMW, Rolls Royce, Porsche, and More πŸ“† 2023-01-03
πŸ”Ή Web Hackers vs. The Auto Industry: Critical Vulnerabilities in Ferrari, BMW, Rolls Royce, Porsche, and More πŸ“† 2023-01-03 #️⃣ #Account_takeover

πŸ”Ή Cacti: Unauthenticated Remote Code Execution πŸ“† 2023-01-03 #️⃣ #RCE
πŸ”Ή Cacti: Unauthenticated Remote Code Execution πŸ“† 2023-01-03 #️⃣ #RCE

πŸ”Ή CVE-2022-25026 & CVE-2022-25027: Vulnerabilities in Rocket TRUfusion Enterprise πŸ“† 2023-01-04 #️⃣ #Authentication_bypass
πŸ”Ή CVE-2022-25026 & CVE-2022-25027: Vulnerabilities in Rocket TRUfusion Enterprise πŸ“† 2023-01-04 #️⃣ #Authentication_bypass

πŸ”Ή PandoraFMS - Pre-Auth Remote Code Execution πŸ“† 2023-01-06 #️⃣ #RCE
πŸ”Ή PandoraFMS - Pre-Auth Remote Code Execution πŸ“† 2023-01-06 #️⃣ #RCE

πŸ”Ή I scanned every package on PyPi and found 57 live AWS keys πŸ“† 2023-01-06 #️⃣ #Information_disclosure
πŸ”Ή I scanned every package on PyPi and found 57 live AWS keys πŸ“† 2023-01-06 #️⃣ #Information_disclosure

πŸ”Ή Advanced CSRF Exploitation πŸ“† 2023-01-07 #️⃣ #CSRF
πŸ”Ή Advanced CSRF Exploitation πŸ“† 2023-01-07 #️⃣ #CSRF

πŸ”Ή The Bug That Kept On Giving :: PaymentBypass :: QR CODE πŸ“† 2023-01-07 #️⃣ #Payment_bypass
πŸ”Ή The Bug That Kept On Giving :: PaymentBypass :: QR CODE πŸ“† 2023-01-07 #️⃣ #Payment_bypass

πŸ”Ή Uploading the Webshell using filename of Content-Disposition Header Story! πŸ“† 2023-01-09 #️⃣ #Unrestricted_file_upload
πŸ”Ή Uploading the Webshell using filename of Content-Disposition Header Story! πŸ“† 2023-01-09 #️⃣ #Unrestricted_file_upload

πŸ”Ή Meta Quest: Attacker could make any Oculus user to follow (subscribe) him without any approval πŸ“† 2023-01-09 #️⃣ #IDOR
πŸ”Ή Meta Quest: Attacker could make any Oculus user to follow (subscribe) him without any approval πŸ“† 2023-01-09 #️⃣ #IDOR

πŸ”Ή Lexmark MC3224adwe RCE exploit πŸ“† 2023-01-09 #️⃣ #RCE
πŸ”Ή Lexmark MC3224adwe RCE exploit πŸ“† 2023-01-09 #️⃣ #RCE