statistics about bug bounty

we created the @bugbsurveys account and we are planning to share useful statistics with twitter surveys…

a little open redirect bypass story

in one private program at bugcrowd, i came across three different open redirect bug methods.…

xss attack vector at "style" context for less.js

less & sass suddenly came to my mind when researching about of css injection attacks.…

parameter pollution bug at twitter

twitter sends an e-mail to you when someone followed you when someone favorited your tweets etc.…