Daily Bug Bounty Writeups by @Piyush Kumawat
This repository contains Bug Bounty writeups
-
💯November 22, 2025 - Understanding Server Side Request Forgery (SSRF) — The Hidden Doorway into Your Servers
-
💯November 22, 2025 - Infinite Money Logic Flaw
-
💯November 22, 2025 - API3:2023 BOPLA (Broken Object Property Level Authorization): Mass Assignment and Data Exposure
-
💯November 21, 2025 - How I Bypassed 2FA and Earned My Second Bug Bounty
-
💯November 21, 2025 - Wordfence Weekly Review — November 10 — November 16, 2025
-
💯November 21, 2025 - The Unrestricted Key: How I Bypassed Microsoft’s API Controls
-
💯November 21, 2025 - Recon Like a Hunter: Practical Tips from Real Findings Part 2
-
💯November 21, 2025 - How I Broke a Realtime Editor’s WebSocket Authentication
-
💯November 21, 2025 - IDOR Part 4 — IoT & API Gateway Exploitation
-
💯November 21, 2025 - Why Most Bug Bounty Hunters Fail — and How to Win