Forem

YogSec profile picture

YogSec

YogSec is a web security research initiative. We analyze how web applications break, why vulnerabilities happen, and how developers can fix them.

Location Meerut, India Joined Joined on  Email address abhinavsingwal@gmail.com Personal website https://linktr.ee/yogsec github website twitter website

Work

YogSec - Web Application Security

How a Simple “Upload by Link” Feature Can Hack Your Own Servers
Cover image for How a Simple “Upload by Link” Feature Can Hack Your Own Servers
yogsec profile
YogSec

How a Simple “Upload by Link” Feature Can Hack Your Own Servers

#api #serverissues #ssrf #apissrf
Comments
2 min read
A Silent Website Killer: SSRF Bugs in APIs
Cover image for A Silent Website Killer: SSRF Bugs in APIs
yogsec profile
YogSec

A Silent Website Killer: SSRF Bugs in APIs

#ssrf #api #apivulnerability
Comments
3 min read
Why BOLA Is #1 in OWASP API Top 10
Cover image for Why BOLA Is #1 in OWASP API Top 10
yogsec profile
YogSec

Why BOLA Is #1 in OWASP API Top 10

#bugbounty #cybersecurity #bola #owasp
Comments
3 min read
Authentication vs Object Authorization: The API Security Mistake Everyone Makes
Cover image for Authentication vs Object Authorization: The API Security Mistake Everyone Makes
yogsec profile
YogSec

Authentication vs Object Authorization: The API Security Mistake Everyone Makes

#authentication #apiauthorization #apiauthentication #apipentesting
Comments
3 min read
What BOLA Really Means in APIs (And Why UI Authorization Is Not Security)
Cover image for What BOLA Really Means in APIs (And Why UI Authorization Is Not Security)
yogsec profile
YogSec

What BOLA Really Means in APIs (And Why UI Authorization Is Not Security)

#bola #cybersecurity #api #apipentesting
Comments
3 min read
Understanding APIs Beyond the Textbook: A Bug Hunter’s Perspective
Cover image for Understanding APIs Beyond the Textbook: A Bug Hunter’s Perspective
yogsec profile
YogSec

Understanding APIs Beyond the Textbook: A Bug Hunter’s Perspective

#apisecurity #bugbounty #webdev #pentesting
Comments
2 min read
BugBoard: A Centralized Dashboard for Bug Bounty Hunters & Security Researchers
yogsec profile

BugBoard: A Centralized Dashboard for Bug Bounty Hunters & Security Researchers

#bugboard #yogsec #cybersecurity #bughunter
Comments
3 min read
DorkTerm: A Simple Tool That Makes Websites Safer
Cover image for DorkTerm: A Simple Tool That Makes Websites Safer
yogsec profile

DorkTerm: A Simple Tool That Makes Websites Safer

#dorkterm #cybersecuritytool #cybersecurity #yogsec
Comments
2 min read
One-Liner Bug Bounty CheatSheet
Cover image for One-Liner Bug Bounty CheatSheet
yogsec profile

One-Liner Bug Bounty CheatSheet

#bugbounty #bugbountycheatsheet #onelinersbugbounty #cybersecurity
1
Comments
53 min read
CVE-2025-5419 - Google Chrome V8 Engine Out-of-Bounds Read/Write Vulnerability
Cover image for CVE-2025-5419 - Google Chrome V8 Engine Out-of-Bounds Read/Write Vulnerability
yogsec profile

CVE-2025-5419 - Google Chrome V8 Engine Out-of-Bounds Read/Write Vulnerability

#cve20255419 #cybersecurity #cve #googlechrome
Comments
9 min read
CVE-2026-0831 - Arbitrary File Write Vulnerability in WordPress Templately Plugin
Cover image for CVE-2026-0831 - Arbitrary File Write Vulnerability in WordPress Templately Plugin
yogsec profile

CVE-2026-0831 - Arbitrary File Write Vulnerability in WordPress Templately Plugin

#cve20260831 #cve #wordpress #wordpresspluginvulnerability
Comments
12 min read
CVE-2026-0629 - TP-Link Camera Authentication Bypass Vulnerability
Cover image for CVE-2026-0629 - TP-Link Camera Authentication Bypass Vulnerability
yogsec profile

CVE-2026-0629 - TP-Link Camera Authentication Bypass Vulnerability

#cve20260629 #cve #tplink #cybersecurity
5
Comments
11 min read
CVE-2026-21268 - Adobe Dreamweaver Input Validation Vulnerability
Cover image for CVE-2026-21268 - Adobe Dreamweaver Input Validation Vulnerability
yogsec profile

CVE-2026-21268 - Adobe Dreamweaver Input Validation Vulnerability

#cve2026212268 #cve #adobe #adobedreamweaver
5
Comments
11 min read
CVE-2026-0594 - Reflected Cross-Site Scripting (XSS) in WordPress
Cover image for CVE-2026-0594 - Reflected Cross-Site Scripting (XSS) in WordPress
yogsec profile

CVE-2026-0594 - Reflected Cross-Site Scripting (XSS) in WordPress

#cve20260594 #cve #wordpress #wordpressxss
5
Comments
10 min read
CVE-2026-0712 - Grafana Open Redirect Leading to Cross-Site Scripting (XSS) Vulnerability
Cover image for CVE-2026-0712 - Grafana Open Redirect Leading to Cross-Site Scripting (XSS) Vulnerability
yogsec profile

CVE-2026-0712 - Grafana Open Redirect Leading to Cross-Site Scripting (XSS) Vulnerability

#cve20260712 #cve #cybersecurity #grafana
5
Comments
9 min read
Understanding WordPress Architecture for Pentesters
Cover image for Understanding WordPress Architecture for Pentesters
yogsec profile

Understanding WordPress Architecture for Pentesters

#wordpress #website #webdev #webtesting
Comments
2 min read
Scam Alert!
Cover image for Scam Alert!
yogsec profile

Scam Alert!

#fraud #yogsec
Comments
1 min read
Best Hacking Tools for Bug Bounty & Penetration Testing | A Complete Open-Source Collection (Updated Guide)
Cover image for Best Hacking Tools for Bug Bounty & Penetration Testing | A Complete Open-Source Collection (Updated Guide)
yogsec profile

Best Hacking Tools for Bug Bounty & Penetration Testing | A Complete Open-Source Collection (Updated Guide)

#cybersecurity #ethicalhacking #bugbounty #kalilinux
Comments
1 min read
Can My Ex Still See My Photos After I Deleted Them?
yogsec profile

Can My Ex Still See My Photos After I Deleted Them?

#photos #privacy #yogsec #pics
Comments
1 min read
How a Blog Lost All Its Data in One Night
yogsec profile

How a Blog Lost All Its Data in One Night

#webdev #website #websitesecurity #yogsec
Comments
1 min read
What is YogSec?
yogsec profile

What is YogSec?

#yogsec #websitesecurity #wordpresssecurity #yogsecwebsitesecurity
Comments
1 min read
Case Study: How a Small Shop’s Website Got Hacked and How It Was Saved
yogsec profile

Case Study: How a Small Shop’s Website Got Hacked and How It Was Saved

#websitesecurity #xss #website #webdev
Comments
1 min read
Case Study: How a Small WordPress Blog Almost Lost Everything
yogsec profile

Case Study: How a Small WordPress Blog Almost Lost Everything

#websitehacked #websitehack #website #websitesecurity
Comments
1 min read
SQL Injection - The Silent Break-In You Didn’t Know About
Cover image for SQL Injection - The Silent Break-In You Didn’t Know About
yogsec profile

SQL Injection - The Silent Break-In You Didn’t Know About

#sqlinjection #website #websitehacked #websitesecurity
Comments
2 min read
Who is Abhinav Singwal?
yogsec profile

Who is Abhinav Singwal?

#abhinavsingwal #yogsec #abhinavsinghal #yogsecabhinavsingwal
Comments
1 min read
Found a CORS Misconfiguration on a Live Website
yogsec profile

Found a CORS Misconfiguration on a Live Website

#website #wordpress #web3 #websitesecurity
Comments
1 min read
Real Case Study: How I Found a Photo Exposure Bug on a Website
Cover image for Real Case Study: How I Found a Photo Exposure Bug on a Website
yogsec profile

Real Case Study: How I Found a Photo Exposure Bug on a Website

#yogsec #websitesecurity #website #websitehacked
Comments
1 min read
How to Install and Use Virtualenv on Linux
Cover image for How to Install and Use Virtualenv on Linux
yogsec profile

How to Install and Use Virtualenv on Linux

#python #virtualenv #virtualenvironment #pythonvirtualenvironment
Comments
1 min read
Get a Free Privacy Check, See What You're Exposing Online
yogsec profile

Get a Free Privacy Check, See What You're Exposing Online

#privacy #digitalsafety #yogsec #onlinesafety
Comments
1 min read
Introducing BugBoard - An Open Source Dashboard for Bug Bounty Hunters
yogsec profile

Introducing BugBoard - An Open Source Dashboard for Bug Bounty Hunters

#bughunters #ethicalhackers #yogsec #bugboard
Comments
1 min read
This Google trick shows exposed backups of websites
yogsec profile

This Google trick shows exposed backups of websites

#safety #yogsec
Comments
1 min read
How to Secure Your Website from Cyber Threats
yogsec profile

How to Secure Your Website from Cyber Threats

Comments
2 min read
Essential Tips to Secure Your WordPress Website
yogsec profile

Essential Tips to Secure Your WordPress Website

Comments
3 min read
Bug Bounty One-Liner Cheat Codes & Cheatsheet
yogsec profile

Bug Bounty One-Liner Cheat Codes & Cheatsheet

Comments
2 min read
Introducing YogSec - Personal Online Security Audit Service
yogsec profile

Introducing YogSec - Personal Online Security Audit Service

#privacy #onlineprivacy #onlinesafety #onlinesecurity
Comments
1 min read
loading...