Hi Guys, My name is m7arm4n and today I wanna talk about one of my findings on a private program that was vulnerable to Mass Assignment leads to make victim’s accounts inaccessible. I discovered many Mass Assignment in different programs and functions but this one is my favorite and the…

Hello my friends, Today I want to talk about one of my admin panel bypass methods which leads me to easily bypass the admin panel. In my pervasive write-up, I noticed the power of the Wayback Machine and how it helped me to discover the hidden endpoints and exploit…

Hi amazing researchers, Here is my Privilege Escalation vulnerability on a private program that let attackers take over the whole Company and even kick out the main manager. For discovery such this type of vulnerability, I always recommend working with the website deeply and organizing all features, user levels, etc. …

Hello team, Here again, to review another of my findings but this time on the Citizens Bank, an American bank headquartered in Providence, Rhode Island, which operates in Connecticut, Delaware, etc. Here is the Citizens Bank Responsible Disclosure Program

Hi amazing researcher, Welcome to another review of the vulnerability discovery on ASDA. Today I want to discuss Host Header Poisoning leading to a one-click-to-account takeover BUT that wasn’t a normal one. technically I used open redirect and Port Poisoning to exploit this vulnerability. Be my guest… Let’s talk about…

Hi Guys, Again I'm here to review another of my finding on the Sony program, This write-up is about how to automate process helps you find High or even critical vulnerability easier. What’s the default credential vulnerability !? The term “default credentials vulnerability” describes a security problem where software, hardware…

Hi guys, My name is Arman and you know me as M7arm4n. Today I want to talk about how I was able to access the admin panel in Coca-Cola for the 2022 World Cup 🏆 The essential part of discovering this vulnerability is continuous RECON, about 1 month before Hunting…

Hello dear friends, This write-up is about one of my findings on BugCrowd’s programs that lead attackers to use IDOR to inject XSS payload on the victim profile and send a request to update the password function till change victim's password. Recon is the most important part of the bug…

Hello amazing hunters, Today i want to notice 4 ways to find XSS in file upload that i found all of them in bug bounty programs or pentest programs. Let’s play this game… XSS via SVG file This is my favorite one that leads an attacker to upload an SVG…