Open in app

Sign In

Write

Sign In

Th3G3nt3lman
Th3G3nt3lman

2.4K Followers

Home

About

Jun 5, 2020

Multiple Information exposed due to misconfigured Service-now ITSM instances

ServiceNow is a cloud-based company that provides software as a service (SaaS) for technical management support. The company specializes in IT services management (ITSM), IT operations management (ITOM) and IT business management (ITBM), allowing users to manage projects, teams and customer interactions via a variety of apps and plugins. ServiceNow…

3 min read

Multiple Information  exposed due to misconfigured Service-now ITSM instances
Multiple Information  exposed due to misconfigured Service-now ITSM instances

3 min read


Oct 20, 2017

How i found an SSRF in Yahoo! Guesthouse (Recon Wins)

Hi Guys, As i said before sharing is caring, here i am describing one of my findings that was closed 2 weeks ago in yahoo Guesthouse https://gh.bouncer.login.yahoo.com/ and i am describing in details, how recon helped me finding a vulnerable endpoint where i achieved the SSRF. As mentioned publicly Yahoo…

Security

4 min read

How i found an SSRF in Yahoo! Guesthouse (Recon Wins)
How i found an SSRF in Yahoo! Guesthouse (Recon Wins)
Security

4 min read


Published in

InfoSec Write-ups

·Sep 24, 2017

900$ XSS in yahoo ( Recon Wins )

Hi Guys, For those who expects special bypass or xss related stuff this is not about the xss i found which was easy hit, this is about the recon i did and the help i got from Knoxss to report this vulnerability to yahoo. Generally due to my work i…

Bug Bounty

4 min read

900$ XSS in yahoo ( Recon Wins )
900$ XSS in yahoo ( Recon Wins )
Bug Bounty

4 min read


Published in

InfoSec Write-ups

·Jun 4, 2017

How I got 5500$ from Yahoo for RCE

Hi Guys, I always believed that sharing is caring, and i have been learning from multiple security researchers in the bug bounty field, so i decided to share my few findings with you as it might help others who started in the Bug Bounty journey. As you already know few…

Security

2 min read

How I got 5500$ from Yahoo for RCE
How I got 5500$ from Yahoo for RCE
Security

2 min read

Th3G3nt3lman

Th3G3nt3lman

2.4K Followers

Security Researcher / Bug Bounty Hunter / https://twitter.com/Th3G3nt3lman

Help

Status

Writers

Blog

Careers

Privacy

Terms

About

Text to speech

Teams