List: Bug Bounty | Curated by Aswin KV | Medium

Jun 1, 2023

10 stories

1 save

Bug Bounty

In

JavaScript in Plain English

by

Aswin KV

Client Side Template Injection (CSTI)

Impact, Exploitation, and Recommended Mitigation Measures

May 21, 2023

Client Side Template Injection (CSTI)

May 21, 2023

In

ILLUMINATION

by

Aswin KV

Exploiting Paypal Payment Gateway Results In Free Shopping

Hello everyone, I’m Aswin ,Security Researcher from Kerala,India.

Mar 13, 2023

Exploiting Paypal Payment Gateway Results In Free Shopping

Mar 13, 2023

In

InfoSec Write-ups

by

Aswin KV

Reflected XSS on Admin Login Page

Hi! I’m Aswin,security researcher and a penetration tester.Here we are discussing reflected XSS in a private bug bounty program.

Mar 21, 2023

Reflected XSS on Admin Login Page

Mar 21, 2023

In

System Weakness

by

Aswin KV

Unicode Normalization Leads to Account Takeover

Hello everyone,

Mar 23, 2023

Unicode Normalization Leads to Account Takeover

Mar 23, 2023

In

System Weakness

by

Aswin KV

Open Redirect Vulnerability: A Potential Threat to User Security

A Bug Bounty Report on the Risks of Unvalidated URL Redirections in Websites and Applications

Mar 31, 2023

Open Redirect Vulnerability: A Potential Threat to User Security

Mar 31, 2023

In

System Weakness

by

Aswin KV

Stored DOM XSS

Discovering and addressing a critical security flaw

Apr 5, 2023

Stored DOM XSS

Apr 5, 2023

In

System Weakness

by

Aswin KV

SMTP Injection

How a Single Email Can Compromise Your Security

Apr 13, 2023

SMTP Injection

Apr 13, 2023

In

InfoSec Write-ups

by

Aswin KV

LDAP Injection

A Critical Security Flaw Exposing the Application to LDAP Injection Attacks

May 2, 2023

LDAP Injection

May 2, 2023

In

InfoSec Write-ups

by

Aswin KV

URN Injection

High-severity vulnerability enables unauthorized access and potential data leakage.

May 26, 2023

URN Injection

May 26, 2023

In

System Weakness

by

Aswin KV

Critical Union-Based SQL Injection Vulnerability

Unauthorized Access and Data Leakage via Union-Based SQL Injection

May 30, 2023

Critical Union-Based SQL Injection Vulnerability

May 30, 2023