private program – Progress28

P3 – Panel Admin Takeover via Credential Leak on API Documentation Link

By: rootbakar July 10, 2023July 10, 2023

P3 – Panel Admin Takeover via Credential Leak on API Documentation Link

By: rootbakar January 27, 2023July 8, 2023

P2 – IDOR For Wallet Balance Manipulation

By: rootbakar January 21, 2023January 21, 2023

P1 – Default Credential on Username Password Employer

By: rootbakar January 10, 2023January 10, 2023

P1 – Sensitif Information Leak on js File

By: rootbakar January 9, 2023January 9, 2023

P3 – Administration Page Leak via Public IP

By: rootbakar January 3, 2023January 3, 2023

IDOR – User Phone Number Leak

By: rootbakar January 2, 2023January 21, 2023

How to Get 12 Million Rupiah in One Night (Open Redirect Lead to Account Takeover)

By: rootbakar December 31, 2022December 31, 2022

Misconfig on Try Wrong Password Lead To DoS

By: rootbakar December 30, 2020January 9, 2021

[TIPS] OPEN REDIRECT TO ATO VIA GOOGLE AND FACEBOOK OAUTH

By: rootbakar December 25, 2020December 25, 2020

[TIPS] BYPASS INSECURE DIRECT OBJECT REFERENCE (IDOR) PROTECT