Awez KagdiSensitive data exposure through GitHub Leads to Dev team accounts compromise.Vulnerability Category: A3- Sensitive Data Exposure.Nov 2, 20221Nov 2, 20221
Awez KagdiNo Valid SPF Records: An attacker can send an email on behalf of the organization or CEO.Vulnerability Category: A6- Security MisconfigurationApr 8, 2022Apr 8, 2022
Awez KagdiRemote Code Execution | A Story of Simple RCE on Jenkins Instance.Vulnerability Category: A1- Code InjectionMar 9, 20221Mar 9, 20221
Awez KagdiAn Clickjacking - Which Rewarded me with $$$Vulnerability Category: A6- Security MisconfigurationMar 3, 20221Mar 3, 20221
Awez KagdiBusiness Logic Bug| Email Existing Bypass | Running 2 accounts with a single emailVulnerability Category: Business Logic ErrorMar 2, 20225Mar 2, 20225
Awez KagdiNo Rate Limiting on Forget Password Page (Email Triggering)Vulnerability Category: A6- Security MisconfigurationMar 1, 2022Mar 1, 2022