Follow the Blog via RSS
Food
Technology
News
Sports
Post Top Ad
Wednesday, 8 May 2019
[Advisory] Unpatched URL Address Bar Spoofing Vulnerability in UC Browser 12.11.2.1184 and UC Browser Mini 12.10.1.1192: With the same old one-liner payload...
Labels:
android security,
mobile security,
security vulnerability,
UC Browser,
UC Browser Security Advisory,
UC Browser security vulnerability,
unpatched vulnerability,
URL Address Bar Spoofing
Bug hunter and vulnerability researcher
Tuesday, 23 April 2019
This is how (easily) Indiamart gave away access to their Internal corporate secrets and Dev Instances
Labels:
corporate secrets,
data leak,
Indiamart,
internal panel,
security breach,
security vulnerability,
vulnerability
Bug hunter and vulnerability researcher
Wednesday, 10 April 2019
[Unpatched Vulnerability] CVE-2019-11015: Lock Screen Auth Bypass leading to Sensitive Information Disclosure and an Improper Access Control issue in Xiaomi MIUI OS (latest stable releases affected)
Labels:
advisory,
CVE,
Mi,
MIUI,
mobile security,
security,
sensitive information disclosure,
unpatched vulnerability,
Xiaomi
Bug hunter and vulnerability researcher
Monday, 8 April 2019
0day Alert: URL Spoofing Bypassed for latest Mint Browser 1.6.4 by Renwa
Labels:
mobile security,
Xiaomi,
xiaomi browser 0day,
xiaomi browser vulnerability,
xiaomi security issue
Bug hunter and vulnerability researcher
Sunday, 7 April 2019
0day Alert: Bypassing CVE-2019-10875 or, Xiaomi's Mint Browser's URL Spoofing patch: Discovered by Renwa
Labels:
0day,
mobile security,
Xiaomi,
xiaomi browser 0day,
xiaomi browser vulnerability,
xiaomi security issue
Bug hunter and vulnerability researcher
Friday, 5 April 2019
Xiaomi URL Address Bar spoofing w/ SSL vulnerability or, CVE-2019-10875 - Was it intentionally kept in the global versions by Xiaomi?
Bug hunter and vulnerability researcher
Sunday, 31 March 2019
The case of an unusual $10k worth content-based Blind SQLi in a Private Program
Labels:
Blind SQLi,
bug bounty writeup,
content based,
SQL injection
Bug hunter and vulnerability researcher
Saturday, 1 December 2018
How I managed to get an @Google.com email address, bypassing their previous patch!
Post Bottom Ad
About Author
A Security Researcher and Bug Hunter based in India.
Socialize