Brett Buerhaus

Vulnerability disclosures and rambles on application security.

Menu

Skip to content

Home
Resume
CSRFGen
XXEGen
Bounty Report Generator
Bug Bounty Forum
Misc

HomePosts tagged 'valve'

Nothing Found

It seems we can’t find what you’re looking for. Perhaps searching can help.

Search for:

Search for:

Twitter Feed

Tweets by @bbuerhaus

Tags

1o57 admin airbnb anime application security appsec badge_challenge bounty bounty programs bug bounty burp co9 cross-site request forgery cross-site scripting crypto CSAW csrf css CTF defcon defcon22 defcon23 detection facebook flickr google hackerone javascript lfi livechat mobile potatosec python regex research security security research sqli sql injection ssrf waf web whitehat xss yahoo

Recent Posts

Escalating XSS in PhantomJS Image Rendering to SSRF/Local-File Read
Airbnb – Web to App Phone Notification IDOR to view Everyone’s Airbnb Messages
Airbnb – Ruby on Rails String Interpolation led to Remote Code Execution
Airbnb – Chaining Third-Party Open Redirect into Server-Side Request Forgery (SSRF) via LivePerson Chat
Airbnb – When Bypassing JSON Encoding, XSS Filter, WAF, CSP, and Auditor turns into Eight Vulnerabilities

Archives

June 2017
March 2017
August 2016
June 2016
May 2016
April 2016
September 2015
August 2015
February 2015
January 2015
October 2014
August 2014
July 2014
June 2014
April 2014