Bug Bonty Hunter (bugbounty)

Google Patches Chrome Sandbox Escape Zero-Day Caught by Kaspersky https://www.securityweek.com/google-patches-chrome-sandbox-escape-zero-day-caught-by-kaspersky/ The vulnerability, tracked as CVE-2025-2783, was chained with a second exploit for remote code execution in attacks targeting organizations in Russia.

• 0 replies
• 0 recasts
• 0 reactions

🔍 Want to find exploitable CVEs for cybersecurity testing? Use CVEmap to spot vulnerabilities with public proof-of-concept, marked exploitable by CISA, remotely exploitable, Flags to use: -k (CISA exploitable), -t=false (no template), -poc (has proof-of-concept), -re (remote). Happy hunting! 🛠️

• 0 replies
• 0 recasts
• 0 reactions

Looks like there is a demand for Telegram RCE exploit https://techcrunch.com/2025/03/21/russian-zero-day-seller-is-offering-up-to-4-million-for-telegram-exploits/

• 0 replies
• 0 recasts
• 0 reactions

recast:farcaster://casts/0xa0ae3a5852ef5b9212ae847f0109fa614d2a685cb975526ca7d62da4939b41c8

• 0 replies
• 0 recasts
• 0 reactions

If you ever had CSP preventing your XSS from executing... Check out CSP evaluator! A simple tool that lists all Content Security Policy issues on your target to help you figure out which missing directives or policies can help you bypass CSP! 😎 #Bugbountytips 👇 https://buff.ly/321F7hZ

• 0 replies
• 0 recasts
• 0 reactions

Next time you're testing the checkout functionality on your target... Check if it's vulnerable to formula injection and if it allows you to order product at discounted or even negative prices! 😎 🤑 #BugBountyTips

• 0 replies
• 0 recasts
• 0 reactions

If you ever had CSP preventing your XSS from executing... Check out CSP evaluator! A simple tool that lists all Content Security Policy issues on your target to help you figure out which missing directives or policies can help you bypass CSP! 😎 #BugBountyTips 👇 https://buff.ly/321F7hZ

• 0 replies
• 0 recasts
• 0 reactions