Disclaimer: This writeup is heavily redacted due to the company’s policy on disclosing reports. Don’t forget to read my previous Bug Bounty Writeup — Stored XSS on Product Description [HIGH] — $400. Thank you for your time!

Within a web application, user roles are often established in order to correctly…


The following article is written based on my personal experience penetration testing web applications. Hope you enjoy it!

Introduction

As we all know, authentication endpoint has always been the first line of defense of web applications. It functions as the endpoint which verifies the identity of a currently existing user in…


Disclaimer: I do not have permission to disclose the report, therefore I needed to heavily redact this writeup. Thank you and happy reading!

Stored cross-site scripting is a vulnerability where an application would store untrusted malicious code from users. The combination of being lethal whilst having a low attack complexity…


The bug bounty industry can be considered as one of the most competitive industries. The combination of evolving technologies as well as the increasing number of researchers creates a highly competitive environment. …


I am a relatively new Bug Bounty Hunter and do not claim to be a professional! Just trying to share my experience from the perspective of a newbie. I expect all readers to have basic understanding of CSRF.

Introduction

Cross-Site Request Forgery (CSRF) was one of the first vulnerabilities that I…


Disclaimer: I do not claim to be a professional! Just sharing my personal experience ;)

Information Leakage = Data Breach

According to Varonis.com, the world experienced a total of 7 million data records compromised everyday and 56 records every second. I am sure that everyone is well-versed regarding the impact of a Data Breach. The…

Emanuel Beni Harijanto

Cybersecurity enthusiast! Eager to learn and share personal experiences with all of you.

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store