Ungku Nazmi


  • Home

  • About

  • Tags

  • Categories

  • Archives

  • Search

How I found Bug in ARMY.MIL.MY [SQLi]

Published on 2022-10-22 | Categorized in Web Security | heat ℃

SQL injection (SQLi) is a cyberattack that injects malicious SQL code into an application, allowing the attacker to view or modify a database.

read more »

How I found Bug in Pos Malaysia Improper Authorization

Published on 2022-10-19 | Categorized in Web Security | heat ℃

The software does not perform or incorrectly performs an authorization check when an actor attempts to access a resource or perform an action...

read more »

How I found Bug in Cuckoo Malaysia, Singapore, Indonesia and Brunei

Published on 2022-09-05 | Categorized in Web Security | heat ℃

A couple of days ago, I was browsing Zone-H for checking Malaysian Website Defacecment activity, and I see that some Malaysian websites have been successfully hacked by

read more »

Reporting 105 Malaysia IP Vulnerable CVE-2018-13379

Published on 2022-08-31 | Categorized in Web Security | heat ℃

CVE-2018-13379 is a pre-authentication vulnerability that allows a threat actor to read arbitrary files by sending specially crafted HTTP requests to FortiOS devices.

read more »

How I found Bug in DATA.GOV.MY JasperServer

Published on 2019-10-03 | Categorized in Web Security | heat ℃

The product uses weak credentials (such as a default key or hard-coded password) that can be calculated, derived, reused, or guessed by an attacker.

read more »

CYBERSECURITY.MY Mail Server Bug

Published on 2018-12-04 | Categorized in Web Security | heat ℃

As mentioned above, the site is a Mail Server for Cyber Security Malaysia, and I was able to access into the web (Public), which leads to injection vulnerabilities..

read more »
123
Donnazmi

Ungku Nazmi

wait... what??????

24 Log
10 Categories
23 Label
RSS
GitHub E-Mail Telegram Youtube Instagram Codepen Medium
Links
  • R06U3
  • 7RU57
  • FL45H
  • W3B
  • V1510N
  • BL4NK
  • CWE
© 2020 Donnazmi
Ungku Nazmi
|
Number Of Visitor: