PinnedHow I Found a Vulnerability in Paytm and Received a BountyHello everyone, this is Umair Farooqui with a new experience about how I found a vital security issue on the Paytm platform and, in turn…Jun 251Jun 251
My Journey to the Nokia Security Hall of FameHey everyone, it’s Umair Farooqui here, also known as “mufazmi”. I’m thrilled to share my journey with you all, from discovering…May 11May 11
SSRF Bypass Techniques: A Comprehensive Guide for Security ResearchersServer-Side Request Forgery (SSRF) vulnerabilities pose a significant threat to web applications, allowing attackers to manipulate…May 1May 1
Flutter Linux Build Error: Permission Denied for “/usr/local/xxx”Are you encountering a frustrating error while trying to build your Flutter app for Linux? Specifically, are you seeing a “Permission…Mar 20Mar 20
Unauthorized Email Address Change Blocks User Account Access — $200Greetings to the vigilant online community,Oct 11, 2023Oct 11, 2023
Setting Up PostgreSQL on an EC2 Instance Running UbuntuIntroduction: In this guide, we’ll take you through the steps to set up PostgreSQL on an Amazon EC2 instance running Ubuntu. PostgreSQL is…Oct 10, 2023Oct 10, 2023
Solving CORS Issues in Your Node.js ApplicationCross-Origin Resource Sharing (CORS) issues can be a real headache when developing a Node.js application that needs to communicate with…Sep 14, 2023Sep 14, 2023
Missing Dispatcher Filters — external access not Blocked — BugCrowd | mufazmiVulnerabilities can be found in the most unexpected areas in the constantly changing field of cybersecurity. I just had the chance to find…Sep 12, 2023Sep 12, 2023
Revealing the Intriguing HTTP Response Splitting Vulnerability | Bounty $200Hey there, I’m Umair Farooqui, and I’m thrilled to take you on a journey through a fascinating discovery I made in the ever-evolving realm…Sep 6, 2023Sep 6, 2023
Host Header Injection / Redirect on Spotify — Bounty $200In the realm of cybersecurity, uncovering vulnerabilities is a vital step in fortifying digital landscapes. My journey led me to the…Sep 1, 20233Sep 1, 20233