Ehtesham Ul Haq – Medium

Ehtesham Ul Haq

Published in

InfoSec Write-ups

JS File Leak Could Lead to App Exploits

Free Article Link: Click for free!

1d ago

JS File Leak Could Lead to App Exploits

1d ago

Published in

InfoSec Write-ups

A Subtle Bug That Opened the Door to Malicious Hyperlinks

Free Article Link: Click for free!

Jul 7

A Subtle Bug That Opened the Door to Malicious Hyperlinks

Jul 7

Published in

InfoSec Write-ups

How I Bypassed Account Verification with a Simple Host Header Trick

Free Article Link: Click for free!

Jul 3

How I Bypassed Account Verification with a Simple Host Header Trick

Jul 3

Published in

InfoSec Write-ups

How an OAuth Misconfiguration Led to Token Leakage

Free Article Link: Click for free!

Jun 23

How an OAuth Misconfiguration Led to Token Leakage

Jun 23

Published in

InfoSec Write-ups

How a Simple Redirect Led to a $550 XSS Vulnerability

Free Article Link: Click for free!

Jun 16

How a Simple Redirect Led to a $550 XSS Vulnerability

Jun 16

Published in

InfoSec Write-ups

Information Disclosure via GraphQL in Production

Free Article Link: Click for free!

Jun 12

Information Disclosure via GraphQL in Production

Jun 12

Published in

InfoSec Write-ups

HTML Injection in Traveler Profiles

Free Article Link: Click for free!

Jun 9

HTML Injection in Traveler Profiles

Jun 9

Published in

InfoSec Write-ups

How a Welcome Email Can Be Used for Malicious Redirection

Free Article Link: Click for free!

Jun 5

How a Welcome Email Can Be Used for Malicious Redirection

Jun 5

Exploiting the Gaps in Password Reset Verification

Free Article Link: Click for free!

Jun 2

Exploiting the Gaps in Password Reset Verification

Jun 2

Published in

InfoSec Write-ups

A Hidden Backdoor: Bypassing reCAPTCHA on the Sign-up Page

Free Article Link: Click for free!

May 29

A Hidden Backdoor: Bypassing reCAPTCHA on the Sign-up Page

May 29

Ehtesham Ul Haq

Ehtesham Ul Haq

Penetration Tester & Bug Bounty Hunter focused on finding vulnerabilities and helping organizations stay ahead of cyber threats.

Following

Help

Status

About

Careers

Press

Blog

Privacy

Rules

Terms

Text to speech