VC0D3R

My challenge is actually based on a bug I found in Apollo Server; in its default configuration, it uses the same blacklist-based approach to prevent CSRF. I was able to bypass it and use it as an XS-Leak in default configs. I’ll be writing a detailed write-up soon about it :)

Is there any chance for CSRF? 🤔 Test it out live at: pwnbox.xyz

New research just dropped by @alien2exe on hijacking OAuth popups via predictable window. open() targets. The chain uses iframe name collision forcing the auth flow into a controlled context, eventually linking an attacker-controlled addon to leak workspace PII and config data lab.ctbb.show/research/can-a…

An empty `X-Forwarded-For` header causes internal Pod/server IPs to be disclosed in the response header or body, which can then be targeted for SSRF.

@omidxrz 🔥🔥

We got permission from the Samsung Security team to disclose this uXSS that we found in Samsung Browser, it was assigned a CVE (CVE-2025-58485) and patched. Here is the PoC, expect the write-up in the next upcoming days.

I’ve been digging into HTTP Trailers and found some new smuggling techniques: sebsrt.xyz/blog/trailing-…

GraphQL Introspection Bypass via Field Suggestions Even with introspection disabled, GraphQL APIs leak schema information through error messages. When introspection returns errors, exploit the suggestion feature: > Send queries with intentional typos > GraphQL suggests similar field names in error responses > Tools like Clairvoyance can automate schema reconstruction > Build a complete schema map from suggestions alone Source👇 assetnote.io/resources/rese…

@immunefi Wow !!🔥

Security researcher ily2 has just earned a staggering $3,000,000 from submitting a critical smart contract bug via Immunefi. That's the largest single payout in web3 security in recent memory. In total, he's submitted 3 reports. All 3 were paid. 100% accuracy. His leaderboard update is coming soon, but you can pledge IMU to him now and earn when he finds the next one: immunefi.com/pledge/ily2

@carlos__alegre @immunefi 😂😂

@immunefi Im waiting for someone to post the: "ily2 was my AI agent" post

@infinitelogins RESOURCES

I analyze thousands of bug bounty content items every month. Less than 5% makes it to the newsletter. I distilled those curated selections down to the top 25 resources for 2026 and put them in this PDF. It includes the top platforms, tools, and people that consistently deliver high signal content. Comment RESOURCES and I'll DM you the PDF for free. (Make sure your DMs are open) #BugBounty

🔒 Want to move beyond passwords? Check out this beginner's guide to Cross-Device Passkeys! Learn how "Hybrid transport" uses QR codes and Bluetooth to let you sign in securely on any device – even public ones – without ever sharing your private keys. bughunters.google.com/blog/passkeys

@AmirMSafari great work 🔥

I recently discovered several vulnerabilities in MCP servers across different attack scenarios (DOM XSS, Stored XSS, SSRF, etc.) and decided to publish a blog post to share my knowledge. Hope you enjoy it! :D blog.voorivex.team/shaking-the-mc…

@Teeegra شت😐😐😐

سرور آپدیت Notepad++ از تقریبا یکسال پیش دست هکرها بوده و نسخه ویروسی پخش میکرده notepad-plus-plus.org/news/hijacked-…

@AtaTurk1925 🔥🔥🔥

Testing a single App version is blind recon. Full coverage requires reviewing all versions to track newly added, removed, or modified endpoints across releases. Most critical mobile bugs live between versions not in the latest one.

@YShahinzadeh Nice 🔥

after a long discussion on a report, I managed to convince the program that the bug is High and they issued a bonus on top of the bounty. they'd mistakenly considered PR as High because the victim needed to be authenticated when opening my link, this actually affects AC not PR :)

I’ve added here github.com/orwagodfather/… PDF file for XSS, it can bypass any waf for who looking for Stored XSS , and it can be changed to blind if you want to Simply I encoded the payload as ASCII hex You can edit the payload over notepad++ #bugbountytips #bugbountytip #bugbounty

Our latest research is out! If you missed a good write-up for nice vulnerabilities, I brought you one! Enjoy the reading! @FearsOff @Cloudflare

این دامنه و وب سایت رو ثبت و راه اندازی کردم بعنوان راهنمای امنیت سایبری اولیه، ساده و قابل استفاده برای عموم. محتوا و قالب اصلی سایت کار من نیست و فقط ترجمه و قالب فارسی رو اضافه و درست کردم. amni.at محتوای فنی، بخصوص متناسب با شرایط و نیاز کاربر ایرانی، هنوز جای کار و تکمیل شدن داره که به مرور انجامش میدم. پیشنهادی هم اگر دارید برای تکمیل و اصلا محتوا، میتونید از طریق مخزن گیت هاب پروژه ارسال کنید :)

Nominations for the Top 10 (new) Web Hacking Techniques of 2025 are now live! Review the submissions & make your own nominations here: portswigger.net/research/top-1…

Sharing my Burp Extension that earned me $200k in 2025 while API testing heavy JS-rich targets. github.com/jenish-sojitra… The tool helps find endpoints, files, internal emails, and some secrets from minified JS. Its goal is to achieve maximum efficiency with reduced noise in results. Contributions and feedbacks are welcome.