Getting infinite money inside the platform Through Race Condition
Breaking account activation logic and earning rewards in an uncontrolled way in bug bounty.
bug bounty
Exploiting Cross-Site Scripting Vulnerabilities with Polymorphic Payloads
In this post, the use of polymorphism in JavaScript execution payloads in Cross-Site Scripting (XSS) attacks is presented.
From Broken Object Level Authorization(BOLA) to the Massive Financial Attack
Hey everyone, today we’re going to talk about how web applications can be affected by a Broken Object Level Authorization (BOLA) vulnerability, and I’m also going to give you an exploit case example.
