FILTER_VALIDATE_URL bypass in PHP 8 July 16, 2021 ◦ 1 min ◦ Security #php #filter_validate_url #bypass #SSRF #Huntr #bug bounty #CVE-2021-21705
Untrusted code execution in PHPMailer July 10, 2021 ◦ 1 min ◦ Security #untrusted code execution #PHPMailer #Huntr #bug bounty #CVE-2021-3603 #PHP
active_url validation check bypass in Laravel June 12, 2021 ◦ 1 min ◦ Security #laravel #validation #bypass #active_url #Huntr #bug bounty
POP Gadget using function injection in RequiredIf June 12, 2021 ◦ 1 min ◦ Security #laravel #validation #gadget chain #RequiredIf #Huntr #bug bounty
Code Execution via Cross Site Scripting in Tagspaces (A file manager) June 11, 2021 ◦ 1 min ◦ Security #code execution #cross site scripting #TagSpaces #Huntr #bug bounty
Relative Path Traversal in Flarum using fake OAuth Provider June 11, 2021 ◦ 1 min ◦ Security #path traversal #Flarum #Huntr #bug bounty #OAuth Provider
XSS in Unified Transform (A school management software) May 18, 2021 ◦ 1 min ◦ Security #cross site scripting #Unified Transform #Huntr #bug bounty #stored cross site scripting #school management software #account takeover
Stored Cross Site Scripting in October CMS April 3, 2021 ◦ 1 min ◦ Security #cross site scripting #October CMS #Huntr #bug bounty #stored cross site scripting
Cross Site Scripting in digidocu March 30, 2021 ◦ 1 min ◦ Security #cross site scripting #digidocu #Huntr #bug bounty #stored xss