Daily Bug Bounty Writeups by @Piyush Kumawat
This repository contains Bug Bounty writeups
-
💯July 11, 2026 - How I Found an OS Command Injection (RCE) in Coolify
-
💯July 11, 2026 - 20 Browser Extensions Every Threat Researcher Should Try
-
💯July 11, 2026 - Prompt Injection: How I Hacked a Corporate AI Chatbot to Leak Private API Keys
-
💯July 11, 2026 - ProtonVPN Stores Your Authentication Private Key in Plaintext — Proton Says It’s Intended Behavior
-
💯July 10, 2026 - Reflected XSS into HTML context with most tags and attributes blocked
-
💯July 10, 2026 - Beyond Recon: My Personal Methodology for Hunting High-Impact Vulnerabilities in 2026
-
💯July 10, 2026 - Your bug bounty session has too many windows open. Crusader wants to fix that.
-
💯July 10, 2026 - INSTAGRAM Account Takeover 0-click Username and email Collision in Password Recover $130k+ bounty
-
💯July 10, 2026 - Understanding window.postMessage(): How Browsers Safely Communicate Across Origins (PART -2)