Recent posts

ICQ Fixes Referer - Based XSS Vulnerability

1 minute read

I’ve reported an interesting Cross-Site Scripting flaw on the official website of ICQ, the world’s probably best known and most used Cross-Platform Messaging...

ABBS Audio Media Player v3.1 WinALL Exploit

5 minute read

A few weeks ago, one of my followers asked me if I can help him writing a functional exploit for the current version of the Audio Media Player by ABBS becaus...

OSCP Course and Exam Review

6 minute read

As you may have noticed - it went quiet on my blog in the last few weeks. I was heavily working on the challenging Offensive-Security Labs to obtain my Offen...

PayPal Bug Bounty: PayPaltech.com XSS

less than 1 minute read

Great news! Today I received the second payment for another valid Cross-Site Scripting vulnerability covered by PayPal’s bug bounty program.  This time the d...