SazoukiThe Power of Guest: Account TakeoverHello All, this a write up about an account takeover using guest access (which is kinda dumb)Aug 22, 20232Aug 22, 20232
SazoukiMass Assignment + CSRF + Self XSS = Good XSSHello infosec community, today I will share with you one of my finding in private program, let’s call it redacted.comAug 14, 2022Aug 14, 2022
SazoukiHow I hacked one of the biggest Airline in the worldHello Bug Bounty community, this is my first write up about a bug that I managed to takeover all accounts in one of well known Airline in…Jun 18, 20223Jun 18, 20223