Saad AhmedExploiting Auto-save Functionality To Steal Login CredentialsHi Folks! hope you all doing well it’s being a long time since I do a write-up, so this write-up is all about my tweet Exploiting/Chaining…Jul 6, 20212Jul 6, 20212
Saad AhmedWeaponizing XSS For Fun & ProfitHi Folks! hope you all doing good so I am back with another amazing way of bypassing the WAF which is blocking me from weaponizing the XSS…Oct 14, 2020Oct 14, 2020
Saad AhmedBypassing CORSHello friends this write-up is about who I bypass the CORS validation. Let assume the website name redact.com simple I login to website…Aug 1, 2019Aug 1, 2019
Saad AhmedBypass CSRF With ClickJacking Worth $1250Hello friends, I hope you all are doing well, so this write up is all about how I chain the to different vulnerabilities to update the…Jul 16, 2019Jul 16, 2019
Saad AhmedAccidental IDORHi guys I hope you all are doing good so this write-up is all about the accidental IDOR that I found in the PRIVATE program so let assume…Jul 1, 2019Jul 1, 2019
Saad AhmedSelf XSS To Evil XSSHi guy I hope you all are fine this POC is all about how I convert the Self XSS To Evil XSS so let assume the site PRIVATE.COMJun 20, 20195Jun 20, 20195
Saad AhmedSQl InjectionHy Guy’s this write up is all about my SQL Injection that I found in PRIVATE program running on BugCrowdJun 17, 20192Jun 17, 20192
Saad AhmedAccount Takeover Worth $900Hello guy’s I am back with another POC again this bug I found in PRIVATE program using on bugcrowd so without wasting the time let get…Jun 16, 20192Jun 16, 20192
Saad AhmedComplete Web Server AccessHi guy I am back with another POC that I found in PRIVATE program on bugcrowd let get started. So let assume the SITE name private.com I…Jun 15, 20192Jun 15, 20192