945
Subscribers
No data24 hours
-17 days
+530 days
Posts Archive
945
š¹ Practical Example Of Client Side Path Manipulation
š 2023-01-09
#ļøā£ #Client_side_Path_Traversal
945
š¹ SSD Advisory ā MacOS Mozilla Firefox Download Protections Were Bypassed By .atloc / .ftploc Files
š 2023-01-11
#ļøā£ #Local_Privilege_Escalation
945
š¹ Client-Side SSRF to Google Cloud Project Takeover [Google VRP]
š 2023-01-12
#ļøā£ #SSRF
945
š¹ DER Entitlements: The (Brief) Return of the Psychic Paper
š 2023-01-12
#ļøā£ #iOS
945
š¹ SSH key injection in Google Cloud Compute Engine [Google VRP]
š 2023-01-12
#ļøā£ #OS_command_injection
945
š¹ Bad things come in large packages: .pkg signature verification bypass on macOS
š 2023-01-13
#ļøā£ #Local_Privilege_Escalation
945
š¹ Bypassing authorization in Google Cloud Workstations [Google VRP]
š 2023-01-13
#ļøā£ #Account_takeover
945
š¹ XSS using postMessage in Google Cloud Theia notebooks [Google VRP]
š 2023-01-15
#ļøā£ #XSS
945
š¹ Critical Vulnerability through OSINT only
š 2023-01-15
#ļøā£ #Information_disclosure
945
š¹ thisclosed_#2 - PostgreSQL Database Exfiltration through the abuse of PostgREST requests
š 2023-01-16
#ļøā£ #SQL_injection
945
š¹ Full Account Take Over by very simple trick.
š 2023-01-16
#ļøā£ #Account_takeover
945
š¹ CVE-2022-21587 (Oracle E-Business Suite Unauthenticated RCE)
š 2023-01-16
#ļøā£ #RCE
945
š¹ AWS CloudTrail vulnerability: Undocumented API allows CloudTrail bypass
š 2023-01-17
#ļøā£ #Cloud
945
š¹ DOM-Based XSS for fun and profit $$$! | Bug Bounty POC
š 2023-01-17
#ļøā£ #DOM_XSS
945
š¹ How Orca Found Server-Side Request Forgery (SSRF) Vulnerabilities in Four Different Azure Services
š 2023-01-17
#ļøā£ #SSRF
945
š¹ How I identified and reported vulnerabilities in Oracle and the rewards of responsible disclosure:From Backup Leak to Hall of Fame
š 2023-01-18
#ļøā£ #Information_disclosure
945
š¹ API Misconfiguration - No Swag of SwaggerUI
š 2023-01-19
#ļøā£ #Security_misconfiguration
Available now! Telegram Research 2025 ā the year's key insights 
