+92 303 800 1800   

Category

Security
Reported two very minor XSS (Cross Site Scripting) bugs were discovered and reported, and both were fixed within next few hours. These were quite interesting and little different then usual, that’s why I would like to share these findings. Below are my reports to the Vimeo and XMarks for my discoveries today. My Report to Vimeo: A...
Read More
#11756 Mail.ru Android Application Crash via DOS  Around 6 months back I was testing Mail.ru Application on Android phone for DOS (Denial of Services), and my purpose was to crash the Mail.ru android application every time it loads, in other words, the application becomes useless, unless the email contains such DOS attack data is not removed...
Read More
Apple is one of biggest companies in IT, and personally because of Steve Jobs, Apple was one of my favorite companies to be acknowledged by. As Apple is a very big organization and it has many products, therefore it wasn’t very hard to find a bug in Apple Products to be enlisted on Apple HOF. Steps...
Read More
Recently, Freelancer has announced a Bug Bounty Program. Details are available here: Freelancer Vulnerability Submission. Well, as Freelancer has newly announced the program to reward Security Researchers for Responsible Disclosure of Security Vulnerability in Freelancer.com, so I am damn sure that it would be vulnerable to many attacks as Security Researchers haven’t headed towards it yet. However,...
Read More
I received some gadgets and T-shirts from Yahoo. Why? Here is what I did. I found Persistent XSS (Cross Site Scripting) Vulnerabilities in Yahoo Calender. Steps to Reproduce XSS Vulnerability in Yahoo Calender 1: I Logged into Yahoo Account and Navigated to Calender. 2: Created two Calenders. -On left hand side, (you will find option...
Read More
© 2018. All Rights Reserved!