Skip to content
  • HOME
  • DISCLAIMER

Tag: private program

  • Home
  • private program
  • Bug Bounty
  • Tips
  • Write Up

P1 – Account Takeover via Forgot Password API

By: rootbakar Posted on February 20, 2024February 20, 2024

P1 – Account Takeover via Forgot Password API

  • Bug Bounty
  • Tips
  • Write Up

P3 – Panel Admin Takeover via Credential Leak on API Documentation Link

By: rootbakar Posted on July 10, 2023July 10, 2023

P3 – Panel Admin Takeover via Credential Leak on API Documentation Link

  • Bug Bounty
  • Write Up

P2 – IDOR For Wallet Balance Manipulation

By: rootbakar Posted on January 27, 2023July 8, 2023

P2 – IDOR For Wallet Balance Manipulation

  • Bug Bounty
  • Redstorm
  • Tips
  • Write Up

P1 – Default Credential on Username Password Employer

By: rootbakar Posted on January 21, 2023January 21, 2023

P1 – Default Credential on Username Password Employer

  • Bug Bounty
  • Redstorm
  • Write Up

P1 – Sensitif Information Leak on js File

By: rootbakar Posted on January 10, 2023January 10, 2023

P1 – Sensitif Information Leak on js File

  • Bug Bounty
  • Redstorm
  • Write Up

P3 – Administration Page Leak via Public IP

By: rootbakar Posted on January 9, 2023January 9, 2023

P3 – Administration Page Leak via Public IP

  • Bug Bounty
  • Redstorm
  • Write Up

IDOR – User Phone Number Leak

By: rootbakar Posted on January 3, 2023January 3, 2023

IDOR – User Phone Number Leak

  • Bug Bounty
  • Peris.ai
  • Write Up

How to Get 12 Million Rupiah in One Night (Open Redirect Lead to Account Takeover)

By: rootbakar Posted on January 2, 2023January 21, 2023

How to Get 12 Million Rupiah in One Night (Open Redirect Lead to Account Takeover)

  • Bug Bounty
  • Redstorm
  • Write Up

Misconfig on Try Wrong Password Lead To DoS

By: rootbakar Posted on December 31, 2022December 31, 2022

Misconfig on Try Wrong Password Lead To DoS

  • Bug Bounty
  • Tips
  • Write Up

[Tips] Open Redirect to ATO via Google and Facebook OAuth

By: rootbakar Posted on December 30, 2020January 9, 2021

[TIPS] OPEN REDIRECT TO ATO VIA GOOGLE AND FACEBOOK OAUTH

Posts navigation

Prev

FIND HERE

RECENT POSTS

  • [Tips & Trick] 0-Click Account Takeover via OSINT
  • P1 – Account Takeover via Forgot Password API
  • P1 – OTP Code Leak to Account Takeover
  • P3 – Panel Admin Takeover via Credential Leak on API Documentation Link
  • P1 – RCE Via Upload PDF File

CATEGORIES

  • Alibaba Security Response Center (1)
  • Apple (1)
  • Bug Bounty (28)
  • Bugcrowd (1)
  • Facebook (1)
  • Google VRP (1)
  • Hackerone (1)
  • Peris.ai (1)
  • Redstorm (5)
  • Tips (16)
  • Write Up (21)
Copyright © 2023 written by RootBakar