Ehtesham Ul Haq – Medium

Ehtesham Ul Haq

Published in

InfoSec Write-ups

Information Disclosure via GraphQL in Production

Free Article Link: Click for free!

3d ago

Information Disclosure via GraphQL in Production

3d ago

Published in

InfoSec Write-ups

HTML Injection in Traveler Profiles

Free Article Link: Click for free!

6d ago

HTML Injection in Traveler Profiles

6d ago

Published in

InfoSec Write-ups

How a Welcome Email Can Be Used for Malicious Redirection

Free Article Link: Click for free!

Jun 5

How a Welcome Email Can Be Used for Malicious Redirection

Jun 5

Published in

InfoSec Write-ups

Exploiting the Gaps in Password Reset Verification

Free Article Link: Click for free!

Jun 2

Exploiting the Gaps in Password Reset Verification

Jun 2

Published in

InfoSec Write-ups

A Hidden Backdoor: Bypassing reCAPTCHA on the Sign-up Page

Free Article Link: Click for free!

May 29

A Hidden Backdoor: Bypassing reCAPTCHA on the Sign-up Page

May 29

Organization Takeover via Privilege Escalation (IDOR)

Free Article Link: Click for free!

May 26

Organization Takeover via Privilege Escalation (IDOR)

May 26

Published in

InfoSec Write-ups

Found a Race Condition That Led to Privilege =>$750

Free Article Link: Click for free!

May 22

Found a Race Condition That Led to Privilege =>$750

May 22

Published in

InfoSec Write-ups

How I Discovered an Open Redirect

Free Article Link: Click for free!

May 19

How I Discovered an Open Redirect

May 19

Published in

InfoSec Write-ups

Breaking In Through the Backdoor: Password Reset Gone Wrong

Imagine being able to take over any user’s account on a platform — even without their interaction. No phishing, no social engineering, and…

May 14

Breaking In Through the Backdoor: Password Reset Gone Wrong

May 14

Published in

InfoSec Write-ups

How I Found a Way to Prolong Password Reset Code Expiry

Free Article Link: Click for free!

May 13

How I Found a Way to Prolong Password Reset Code Expiry

May 13

Ehtesham Ul Haq

Ehtesham Ul Haq

Penetration Tester & Bug Bounty Hunter focused on finding vulnerabilities and helping organizations stay ahead of cyber threats.

Following

Help

Status

About

Careers

Press

Blog

Privacy

Rules

Terms

Text to speech