Abdelhak Kharroubi | writeups.xyz

Title	Vulnerabilities	Programs	Authors
[Hacking Bank] The Second Story of Finding Critical Vulnerabilities on Banking Application	Android Hardcoded Credentials IDOR	Undisclosed	Abdelhak Kharroubi
[Hacking Banks] Broken Access Control Vulnerability in Banking application [PART I]	Broken Access Control Android	Undisclosed	Abdelhak Kharroubi
break and bypass verification email	Open Redirect Email Verification Bypass Weak Crypto	Bukalapak	Abdelhak Kharroubi
CRLF injection allow => cookie injection in root domain & xss	CRLF Injection	Bukalapak	Abdelhak Kharroubi
self XSS to stored XSS [ think out the box]	Self-XSS Stored XSS	TIBCO	Abdelhak Kharroubi
[sidefx][Poc] user enumeration & no rate limeted in send message function	Username Enumeration Lack of Rate Limiting	SideFX	Abdelhak Kharroubi

Page 1 of 1