Web Hacking

Topic	Replies	Views	Activity
Is the /server-status page accessibility considered a bug?	3	313	January 10, 2020
Anyone that knows Graphql, would you be able to help me out?	3	376	January 8, 2020
Stuck on an endpoint Reflected XSS	3	427	December 11, 2019
Accessing JS files in a forbidden folder, is this an issue/bug?	4	463	November 28, 2019
Blind SSRF exploitation	6	916	November 26, 2019
API Key and OAuth Token Disclosure	1	370	November 23, 2019
Is a Facebook Access Token disclosure a bug?	4	576	November 21, 2019
Possible Access Control Bug?	7	476	October 26, 2019
Nignx bypass techniques	3	2890	October 17, 2019
Gitlab recon suggestion	1	442	September 25, 2019
Hacked facebook account accidentally	6	1919	August 31, 2019
Open source tool for authorization / access-control scanning	1	545	August 22, 2019
AWS S3 bucket vulnerability tool-https://github.com/0x240x23elu/s3_vulr	1	1806	July 10, 2019
Potentially Juicy Leak?	5	644	July 1, 2019
Javascript questions	3	1065	June 18, 2019
Need Help or Guidance on Potential Bug	9	755	May 29, 2019
Do you need Linux to view reports safely?	5	448	May 23, 2019
How to create a domain base listener for SSRF testing	3	870	May 10, 2019
How to make more harmful injection in img src=" " with no CSP and trigger js in IMG tag	5	1502	May 7, 2019
Any Idea to Trigger Execution of JavaScript in rel Tag	7	1806	May 6, 2019
XSS attack vector with HEX encoding	2	1003	September 5, 2018
Hack cgi-bin path	6	3586	March 23, 2019
Cloudfront Subdomain Takeover Didn't work anymore?	3	1777	January 9, 2019
Link rel=canonical XSS exploitation	5	3885	January 4, 2019
Testing for XSS	10	3310	December 11, 2018
What are your favorite Firefox add-ons for penetration testing?	2	1925	December 3, 2018
How bypass str_replace	3	1526	November 12, 2018
Testing the UBNT EdgeRouter Web Interface	2	880	November 11, 2018
Is it Application-Level Denial-of-Service?	2	847	November 8, 2018
Jira subdomain hacking	2	886	October 24, 2018