Hello Hunter, Sorry for the delay of post and this is my first post in this year, I hope you’re all doing well and happy. So without wasting any time let’s just start with attack. Summary: Cross Site Port Attack is an abbreviation of XSPA. In this attack an application processes…

Hello Hunters, This article is about one of my finding in which an user can access the account which is not belong to him via social login. Without wasting any time let’s just start with attack. An application allows user to register themselves using the FORM registration and using social…

Hello Hunters, Today I’m going to tell about one of my interesting and rare finding which is Pre-Authentication Account Take-Over. For who doesn’t know about the what is the attack is all about, I would like suggest to first go through this Awesome Write Up by Mr. …

Hello Hunters, today I'm going tell about my one of the finding in which I'm able to bypass the OTP page. So let’s begin. It’s an private program so, I'm not disclose it’s name, let’s call as example.com Now the example.com allows user to register and use it’s functionality but…

Hello Everyone, I’m Hemdeep Gamit, I'm Security Researcher, I hope you’re all doing well, this my first article so please just do ignore my grammar as English is not my first language. So today I’m write this article about my last finding in which I’m able to bypass the email…