Karthikeyan Nagaraj
Tag

bugbounty

#bugbounty

More content

Read more stories on Hashnode

Articles with this tag

25,000$ Bounty — Simple SSRF Led to AWS Credentials Exposure

Feb 28, 20251 min read

Exploiting SSRF in Analytics Reports to Gain AWS Access · Timeline 📅 Reported: November 23, 2023 ✅ Fixed: November 24, 2023 💰 Bounty:...

25,000$ Bounty — Simple SSRF Led to AWS Credentials Exposure

$20,000 Bounty: How a Leaked Session Cookie Led to an Account Takeover

Feb 25, 20252 min read

Understanding Session Hijacking and Preventing Session Leaks · Introduction: The Risk of Leaked Session Cookies Session cookies play a critical role in...

$20,000 Bounty: How a Leaked Session Cookie Led to an Account Takeover

Finding Juicy Information from GraphQL

Feb 23, 20251 min read

Introduction GraphQL APIs have become widely adopted due to their flexibility, but misconfigurations can expose sensitive data to unauthorized users....

Finding Juicy Information from GraphQL

25000$ IDOR: How a Simple ID Enumeration Exposed Private Data

Feb 22, 20251 min read

Understanding GraphQL Misconfigurations and How to Prevent Data Leaks · Timeline June 28, 2022: A security researcher submits a report detailing a...

25000$ IDOR: How a Simple ID Enumeration Exposed Private Data