𝐞𝐧𝐞𝐬

bunun bi tık üstü budur

en buyuk cok buyuk ctf geliyor!!!!!

@muzakirbloch1 just for the poc, found it myself manually

@EnesSaltk7 Claude code 🤣

Insecure Message Listener -> DOM XSS -> Authorized access to API routes via CORS An attacker can extract users' critical information and modify it. An attacker can also make withdrawal requests on behalf of users. Their response? #bugbounty +++

They continued to claim that this is neither critical nor even a real vulnerability, but merely social engineering. So I am disclosing it with their permission. The vulnerability is still there, but according to them, it does not pose any real problem at all.

"Based on our data, the team has not considered this vulnerability critical." You might ask why. I asked the same thing. Their reply was: "The vulnerability in question is a form of phishing."

Bug bounty sırasında bulduğum ve Cloudflare WAF'ı bypassladığım RXSS yazısı. phlmox.medium.com/tr-reflected-x…

Here is my writeup of Intigriti's December XSS challenge. It consisted of 6 smaller challenges combining into a big 1-click exploit. One of the most fun ones I've ever played. Loved the unique format by @RenwaX23! jorianwoltjer.com/blog/p/ctf/int…

third party account linking - account takeover TL;DR: The developers didn't use OAuth's state parameter or implement their own CSRF protection, which led to my OAuth account being linked to theirs. phlmox.medium.com/third-party-ac…

If you find an HTML injection but can't escalate it to XSS due to blacklisted elements, try DOM Clobbering. portswigger.net/web-security/d…

@rizasabuncu bakınız ben de şirket kimliği de var

ne tesadüf

Authentication Bypass phlmox.medium.com/how-i-found-an… #bugbounty

Account takeover via insecure postMessage: @phlmox/account-takeover-via-postmessage-3c493c6d1354" target="_blank" rel="nofollow noopener">medium.com/@phlmox/accoun… nothing fancy, just wanted to write something #bugbounty

@sametsahinnet Great extension, I appreciate your work. However, it couldn't find the 'API_KEY' variable on the web page due to the carriage return characters in your watchlist.txt. It works fine when you remove them.

I'm excited 🎉 to introduce collectvars! A browser extension that finds all JS variables and detects dangerous ones. So you can find secrets and earn money while casually browsing. Check it out github.com/sametsahinnet/… #BugBounty

@buckberi 1500 ile başladık 30 ile kapatıyoruz :) ya da kapatmıyoruz 3 euro da olabilir her an

Bugün de güne 150 Euro olan yurt dışı sipariş limitinin 30 Euro’ya düşürüldüğü haberiyle başladık. 24 Ağustos'tan itibaren 30 Euro üstü gümrükten geçmeyecek.

This might be the most stupid bug ever: a 6-character long email verification code was leaked in response as an encrypted SHA1

@bugoverfl0w Thanks, you can check the README to see the changes

@EnesSaltk7 Congrats bro!!! what do you improve?

Modified my JSLinkfinderv2 Burp suite extension which is clone of the original InitRoot's BurpJSLinkFinder and now it's available for community edition. github.com/phlmox/BurpJSL…

@Hacker0x01 @jobertabma @martenmickos As I know each year #hackforgood destination changes, first it was for COVID-19 then for supporting Ukraine. As you know one of biggest earthquakes recently happened in Türkiye, per this tweet more than 17K lost their lives.

Two major earthquakes, measuring 7.7 and 7.5 hit Turkey 2 days ago. There are tens of thousands of people waiting for our help right now. If you want to help you can use it here: ahbap.org/disasters-turk… Every single Like & RT is appreciated.