I'm a passionate Computer Science student with strong interests in Web Security, Network Security, and Reverse Engineering. I channel my creativity through offensive security testing, leveraging practical skills and theoretical knowledge to tackle real-world security challenges with efficiency and precision.
- Computer Science student
- Security Researcher with a focus on:
- Web & Network Security
- Reverse Engineering
- Malware Development (for educational and research purposes)
- Bug Hunter actively involved in vulnerability research and responsible disclosure
- Several CVEs are registered against my security bug reports
- Web application vulnerabilities (XSS, IDOR, Auth Bypass, etc.)
- Exploit development & malware analysis
- Secure coding and red teaming
- Network protocol analysis and fuzzing
Horilla
- CVE-2026-40867 · Unauthorized Helpdesk Attachment Access via Attachment ID Manipulation
- CVE-2026-40866 · Unauthorized Document Overwrite via File Upload Endpoint
- CVE-2026-40865 · Insecure Direct Object Reference at /employee/view-file/<int:id>
YesWiki
Intermesh GroupOffice
- CVE-2025-48993 · Reflected XSS in Look and feel section of the application
- CVE-2025-48992 · Blind XSS using user's First and Last names field executed on Synchronizaion's Address books
- CVE-2025-48366 · Blind Stored XSS in Phone Number Field Enables Forced Redirect and Unauthorized Actions
- CVE-2025-48368 · DOM-Based XSS in all Date Input Fields Allow Arbitrary JavaScript Execution
- CVE-2025-48369 · Stored XSS in Tasks Comment Section
“Hacking is not about breaking things. It’s about understanding them.”
Thanks for stopping by! Feel free to check out my repositories and get in touch if you'd like to collaborate or connect.