Published inInfoSec Write-ups·Feb 3Password Reset Poisoning with Host Header InjectionHey folks, I am Bharat Singh a Security researcher and Bug Hunter. I am here with an amazing writeup about Password Reset Poisoning with Host Header Injection Vulnerability which I recently found on a VDP and got rewarded with a HOF.Bug Bounty3 min readBug Bounty3 min read
Published inInfoSec Write-ups·Jan 13Strange 2FA MisconfigurationHey guys I am back again with another interesting bug bounty writeup. In this write-up, I am going to tell you about my recent finding on a VDP. Due to the company’s policy, I can’t reveal the name of the program. …Bug Bounty3 min readBug Bounty3 min read
Published inInfoSec Write-ups·Sep 16, 2022How I Hacked my College’s student portalHey guys, I am back again with another writeup about how I found a seviour bug in my college’s student portal which leads to a data leak of every student in my college. …Bug Bounty3 min readBug Bounty3 min read
Published inInfoSec Write-ups·Aug 13, 2022Bypassing unexpected IDORHello guys, I am back again with another writeup on my very recent bug finding on HackerOne Private VDP. In this writeup I am gonna tell you about how I bypassed an IDOR vulnerability and in the end also gonna share some other methods to bypass it so stay tuned. …Bug Bounty4 min readBug Bounty4 min read
Published inInfoSec Write-ups·Aug 8, 2022Stored XSS using SVG fileHey guys, hope you all are doing well. I am Bharat Singh a Security Researcher and bug hunter from India. In this writeup I am going to tell you about my recent finding on a VDP which eventually got duplicated :( . …Bug Bounty3 min readBug Bounty3 min read
Feb 8, 2022Bounty Hacker THM WriteupINTRO This writeup is for a room located on TryHackMe. If you would like to attempt the room, please visit it from here. This is an easy CTF for beginers on tryhackme.com. Task 1 Deploy the machine by clicking the Deploy button. Task 2 (Enumeration) After the machine has finished booting up, lets run a quick…Ctf2 min readCtf2 min read
