Namratha GMHunting CVE’s for fun and learningAs every security researcher idea of tagging CVE’s to my name was a dream when I started my career in infosec. I wondered how this whole…3 min read·Feb 9, 2021----
Namratha GMAccount Takeover via IDORIDOR occurs when a user supplied input is unvalidated and direct access to the object requested is provided.2 min read·Nov 18, 2020----
Namratha GMChaining Bugs — Escalating XSS to SSRFAbusing SSRF in AWS environment | Local File Read4 min read·Oct 17, 2020----
Namratha GMArbitrary File DownloadHere is the story from my recent web application assessment, were the application was vulnerable to directory traversal leading to…2 min read·Jul 22, 2020----
Namratha GMSSRF to Local File read through HTML injection in PDF fileIn one of the recent web application security assessment, I came across an interesting find that allowed me to escalate from simple HTML…3 min read·May 1, 2020----