Evan Ricafort | Blog

Will hack for burger & fries!

Friday, January 31, 2025

pWning resources.gcash.com using HTTP PUT method enabled vulnerability (Write Up)

›
Howdy Readers, During my random testing for my personal project toolkit for web application assessment, I found a very simple and very inter...
Monday, May 22, 2023

WordPress TotalPoll Plugin Race Condition vulnerability (Write Up + AI generated blog)

›
Howdy Readers! A race condition vulnerability has been discovered in the popular WordPress TotalPoll plugin. The vulnerability allows attack...
1 comment:
Monday, May 08, 2023

IPv6 DNS Takeover via mitm6 (Write Up)

›
Howdy Readers! If you're into network pentesting, I'm sure you're familiar with this type of vulnerability. This vulnerability i...
Wednesday, June 23, 2021

Generate online votes using Race Condition Vulnerability in Woobox Web Application (Write Up)

›
Good day Readers, In this post I will show you how I found a simple Race Condition Vulnerability in Woobox. It affects their customers that ...
Thursday, June 17, 2021

HTML Injection and a dream in Google Chrome for Linux (Write Up)

›
Henlooo... In this writeup I will show you a simple vulnerability that I found few days ago on Google Chrome Version 91.0.4472.101 for Linux...
›
Home
View web version

About

My photo
Evan Ricafort
This blog contains write-ups of some of my findings.
View my complete profile
Powered by Blogger.