Full account takeover via reset password function

Hello there! I’m going to talk about a common and strange password reset system that I have seen many times while doing bug hunting or just formal penetration testing engagements and in many cases this system opens the door to the attacker to takeover user’s accounts. The story…

How I got paid premium plan for free on many popular websites

Hi, I’m going to talk again about a common vulnerability that affects many applications, as not a lot of us can notice it, so I hope you like this writeup. One of the most important recon steps to me is reading the website products, blogs, support portal, engineering blog,…

Are you sure this is a trusted email?

This is my first write up about a security vulnerability that I have recently found in a private bug bounty program. This program is a popular accountant software. The story started when I was going to send an Invoice that I have created on the website to an external email…

Hacking thousands of companies through their helpdesk

IntroductionI would like to write about my simple and clear security vulnerability that I was able to hack many companies through it, As I found that’s there are thousands of companies are affected by this vulnerability and I couldn’t report every single company about the vulnerability so I…