User Profile

Me

bl4de

About

Software engineer by day, Bug Bounty Hunter, CTF player and h4ck3R by night :) eJPT, eWPT

Personal website:
https://twitter.com/_bl4de

Recognised by

None listed.

bl4de's challenge statistics

View Researcher Activity

1 total submissions

1 accepted

0 rejected




Easy A properly secured parameter

We recently learned that the message parameter on this page was vulnerable to XSS. While we couldn't afford changing this page, we configured our WAF to prevent exploitation. So it's all fine now,...
Category: Cross Site Scripting (XSS)
Completed on 07-11-2018