Saad AhmedExploiting Auto-save Functionality To Steal Login CredentialsHi Folks! hope you all doing well it’s being a long time since I do a write-up, so this write-up is all about my tweet Exploiting/Chaining…3 min read·Jul 6, 2021--2--2
Saad AhmedWeaponizing XSS For Fun & ProfitHi Folks! hope you all doing good so I am back with another amazing way of bypassing the WAF which is blocking me from weaponizing the XSS…4 min read·Oct 14, 2020----
Saad AhmedBypassing CORSHello friends this write-up is about who I bypass the CORS validation. Let assume the website name redact.com simple I login to website…2 min read·Aug 1, 2019----
Saad AhmedBypass CSRF With ClickJacking Worth $1250Hello friends, I hope you all are doing well, so this write up is all about how I chain the to different vulnerabilities to update the…2 min read·Jul 16, 2019----
Saad AhmedAccidental IDORHi guys I hope you all are doing good so this write-up is all about the accidental IDOR that I found in the PRIVATE program so let assume…2 min read·Jul 1, 2019----
Saad AhmedSelf XSS To Evil XSSHi guy I hope you all are fine this POC is all about how I convert the Self XSS To Evil XSS so let assume the site PRIVATE.COM3 min read·Jun 20, 2019--5--5
Saad AhmedSQl InjectionHy Guy’s this write up is all about my SQL Injection that I found in PRIVATE program running on BugCrowd2 min read·Jun 17, 2019--3--3
Saad AhmedAccount Takeover Worth $900Hello guy’s I am back with another POC again this bug I found in PRIVATE program using on bugcrowd so without wasting the time let get…2 min read·Jun 16, 2019--2--2
Saad AhmedComplete Web Server AccessHi guy I am back with another POC that I found in PRIVATE program on bugcrowd let get started. So let assume the SITE name private.com I…2 min read·Jun 15, 2019--2--2