­
Security Down!
  • Slide 2

Security Down.

An interesting Google vulnerability that got me 3133.7 reward.

October 4, 2018
An interesting Google vulnerability that got me 3133.7 reward.

Note: This blog post doesn't represent my employer by any meaning and was performed during my free time. Hi All…
read more →
Hacking First.org private keys for fun and profit, or maybe not!

March 1, 2018
Hacking First.org private keys for fun and profit, or maybe not!

Hello everyone, finally the blog is back :D TL;DR, Today's blog post is about a LFD/directory traversal vulnerability in First.org…
read more →
Yahoo! Escalated Remote File Inclusion Vulnerability.

November 13, 2016
Yahoo! Escalated Remote File Inclusion Vulnerability.

Hello Everyone :) Today's article will be explained in 2 main phases. 1- How i found the Yahoo LFD/RFI (Local…
read more →
Telekom.de Remote Command Execution!

November 14, 2015
Telekom.de Remote Command Execution!

Salam from Egypt :D Welcome to this blog post about a Remote Command Execution Vulnerability that affected Telekom.de! It all…
read more →
Magento Remote Code Execution Vulnerability!

October 29, 2015
Magento Remote Code Execution Vulnerability!

Salam, Hello, Nekhaw, Selamat Datang, Komastaka, Aregato, Ciao, Merhaba, Swadi Kup, Namaste, Kak Gatokha Bratokha :D Wherever you are from,…
read more →
Paypal critical vulnerability to steal all your Paypal funds!

August 26, 2015
Paypal critical vulnerability to steal all your Paypal funds!

  Hello Readers :) This is Zigoo0 again, and today i will talk about a Stored XSS Vulnerability in "https://Securepayments.Paypal.com"…
read more →
Yahoo SQL Injection to Remote Code Exection to Root Privilege.

September 19, 2014
Yahoo SQL Injection to Remote Code Exection to Root Privilege.

Hello from Egypt :D Today I will blog about a SQL Injection vulnerability that were escalated to Remote Code Execution,…
read more →
Remote Reset Password in one of Yahoo Applications.

September 8, 2014
Remote Reset Password in one of Yahoo Applications.

Hello from Egypt :-) Today I will blog about a Remote Password Reset that I've found in one of Yahoo…
read more →
Yahoo Full Application Source Code Disclosure Vulnerability

July 11, 2014
Yahoo Full Application Source Code Disclosure Vulnerability

Hello Friends, Today I will be talking about a "Full Application Source Code Disclosure" Vulnerability in one of Yahoo domains.…
read more →
One RCE Vulnerability to Hack Yahoo, Microsoft, Orange.

May 15, 2014
One RCE Vulnerability to Hack Yahoo, Microsoft, Orange.

Hello Everyone :-) Today I will be talking about a "Unauthorized Admin Access" that led to "Remote Code Injection" on…
read more →
Yahoo! RCE Detector WebPwn3r Released.

April 14, 2014
Yahoo! RCE Detector WebPwn3r Released.

    Hello Everyone, Today blog post is about WebPwn3r :) For those who never heared about WebPwn3r, let me…
read more →
Kaspersky.com Unvalidated Redirection Vulnerability.

January 25, 2014
Kaspersky.com Unvalidated Redirection Vulnerability.

Would you trust a link from your security vendor? Absolutely Yes! But imagine your security vendor is asking you to…
read more →
Twitter.com Unrestricted File Upload Vulnerability.

January 25, 2014
Twitter.com Unrestricted File Upload Vulnerability.

Hello, Twitter Acknowledged me on their Hall of Fame for finding and reporting Two Vulnerabilities in their web site. Those…
read more →
Yahoo! Remote Command Execution Vulnerability.

January 25, 2014
Yahoo! Remote Command Execution Vulnerability.

Hello Everyone, This is my first writeup for the blog, which I choose to be about "Yahoo Remote Code Execution"…
read more →