Abhi Sharma – Medium

Abhi Sharma

Pinned

Published in

InfoSec Write-ups

1500$: CR/LF Injection

Mar 23, 2024

1500$: CR/LF Injection

Mar 23, 2024

Email Disclosure via .git Config in project: $500 Bounty Bug

I’m excited to share a vulnerability I recently discovered a sensitive information disclosure vulnerability in ExaHub that exposed project…

Mar 7

Email Disclosure via .git Config in project: $500 Bounty Bug

Mar 7

Bypassing Business Logic via Race Condition: A $500 Bounty Bug

Mar 1

Bypassing Business Logic via Race Condition: A $500 Bounty Bug

Mar 1

Published in

InfoSec Write-ups

$1,700 IDOR: Unauthorized Modification of Web Hosting Configuration

Hi Everyone! I recently discovered an IDOR (Insecure Direct Object Reference) vulnerability in ExHub that allowed an attacker to modify the…

Feb 14

$1,700 IDOR: Unauthorized Modification of Web Hosting Configuration

Feb 14

$500 Bounty: Unlocking Premium Job Features with a Simple API Trick!

Hi Everyone, I’m excited to share a vulnerability I recently discovered in ExHub (a pseudonym for a private bug bounty program). This flaw…

Feb 8

$500 Bounty: Unlocking Premium Job Features with a Simple API Trick!

Feb 8

Published in

InfoSec Write-ups

How to choose the Correct Severity or CVSS Score for a Bug: A Practical Guide

Oct 4, 2024

How to choose the Correct Severity or CVSS Score for a Bug: A Practical Guide

Oct 4, 2024

Published in

InfoSec Write-ups

Plan Ristriction Bypass for Slack Integration: 500$ Improper Validation Check Bug

Sep 28, 2024

Plan Ristriction Bypass for Slack Integration: 500$ Improper Validation Check Bug

Sep 28, 2024

Published in

InfoSec Write-ups

500$: Open Redirect Vulnerability

Sep 21, 2024

500$: Open Redirect Vulnerability

Sep 21, 2024

Published in

InfoSec Write-ups

How to Write an Effective Bug Bounty Report: Tips, Structure, and Examples

In the bug bounty world, the quality of your report can make or break your submission. The finding a bug is the first step but writing a…

Sep 13, 2024

How to Write an Effective Bug Bounty Report: Tips, Structure, and Examples

Sep 13, 2024

Published in

InfoSec Write-ups

850$ IDOR:Unauthorized Session Revokation of any user

Sep 7, 2024

850$ IDOR:Unauthorized Session Revokation of any user

Sep 7, 2024

Abhi Sharma

Abhi Sharma

Cybersecurity Consultant | Pentester | Bug Bounty Hunter | ContentWriter 🔗 Connect with me on https://twitter.com/a13h1_ and https://www.linkedin.com/in/a13h1/

Help

Status

About

Careers

Press

Blog

Privacy

Rules

Terms

Text to speech