HACKERBADGER

HACKERBADGER

Breaking things. Writing it down.

HACKERBADGER
Visual_ID: HACKERBADGER

Latest Research

[RECORDS_FOUND: 40]

Cafe Club: UNION-based SQL Injection + Plaintext Password Storage

2026.04.19
BugForge easy UNION-based SQL Injection

Part 1 — Pentest Report

#sql-injection #union-based #sqlite #plaintext-passwords #cwe-89 #cwe-256 #bugforge

Gift Lab: Admin Bypass via Predictable adminAccessToken Cookie

2026.04.18
BugForge medium Broken Access Control

Overview Platform: BugForge Vulnerability: Admin authorization bypass via predictable adminAccessToken cookie Key Technique: Compared the cookie acros...

#broken-access-control #weak-randomness #cookie-prediction #admin-bypass #brute-force

Sokudo: GraphQL Authorization Bypass + Plaintext Password Exposure

2026.04.16
BugForge easy GraphQL Authorization Bypass

Part 1 — Pentest Report

#graphql #broken-access-control #authorization-bypass #plaintext-password #api-security #bugforge

Copypasta: IDOR via Source Map Disclosure

2026.04.15
BugForge easy IDOR

Overview Platform: BugForge Vulnerability: Insecure Direct Object Reference (IDOR) on a secondary read endpoint, discovered via public source map disclo...

#idor #broken-access-control #source-map-disclosure #information-disclosure #bugforge

Tanuki: SSRF to Admin Access Control Bypass

2026.04.14
BugForge medium SSRF

Overview Platform: BugForge Vulnerability: SSRF on /api/fetch bypasses the access-control gate on /admin. The gate denies public traffic (403 Access for...

#ssrf #access-control #confused-deputy #loopback #non-api-routes #bugforge #tanuki

Cheesy Does It: Refund Amount Manipulation

2026.04.13
BugForge easy Business Logic

Overview Platform: BugForge Vulnerability: Business Logic — Unvalidated Client-Supplied Refund Amount Key Technique: Submit an arbitrarily large refun...

#business-logic #refund-abuse #over-refund #client-side-trust #api-security #e-commerce
analytics

Activity Log

[2026.04.19] New writeup published: Cafe Club: UNION-based SQL Injection + Plaintext Password Storage
[2026.04.18] New writeup published: Gift Lab: Admin Bypass via Predictable adminAccessToken Cookie
[2026.04.16] New writeup published: Sokudo: GraphQL Authorization Bypass + Plaintext Password Exposure
[2026.04.15] New writeup published: Copypasta: IDOR via Source Map Disclosure
[2026.04.14] New writeup published: Tanuki: SSRF to Admin Access Control Bypass
construction

Toolkit

web v0.3.0
Caido Workbench
SQLi and JWT workbench plugin for Caido proxy.
speed v1.2.0
Race
HTTP/2 single-packet race condition testing.
key v1.0.0
JWTForge
JWT creation, modification, and signing tool.
more_horiz
More Coming
Additional tools in development.