Kkristofprzybylakincyber-hunter.hashnode.dev·May 12 · 3 min readHow a Voucher Validation Flaw Led to More Than €10,000 in CreditThe Discovery The platform offered newly registered users a welcome voucher that could be redeemed for credit. At first glance, the implementation appeared secure. Manually modifying the visible vouch00
Kkristofprzybylakincyber-hunter.hashnode.dev·Apr 26 · 3 min readThe Infinite Consultation: How a Business Logic Flaw Led to Unlimited Free Vet AppointmentsIn cybersecurity, we often hunt for complex technical bugs. However, some of the most fun vulnerabilities aren’t found in the code's syntax, but in its Business Logic. I discovered a Medium-severity f00