Writeups

A web cache deception chained to a CSRF, the recipe

7 minute read

Published:

Recently, I received a bounty for a vulnerability discovered on an e-commerce site allowing the personal information — including the delivery address — of a user to be changed. Let’s talk about it!

XSS Intigriti challenge 0523

8 minute read

Published:

Let me explain how did I overcome this XSS challenge set up by the bug bounty platform Intigriti. It may be a source of inspiration for some of you during your research.

DOS via cache poisoning on Mozilla

11 minute read

Published:

Let’s take a closer look at how cache poisoning works and how I was able to exploit this vulnerability to get a DOS on the home page of a large company.