My Bounty Report Card

Tracking my progress as a bug bounty hunter and showcasing the vulnerabilities I've discovered in public programs.

card-img
Improper Social Link Validation: A Low Severity Bug With High Chaining Potential

A simple social handle misconfiguration turned into a session hijack vector — thanks to weak validation and missing cookie flags.

card-img
Broken Link Hijack

A broken social link on a popular gaming website let me claim their Facebook handle and reroute user traffic.