43961
Happy hunting! thebugbountyhunter.com hello@thebugbountyhunter.com
RCE in Google's AI code editor Antigravity - $10000 Bounty
https://www.hacktron.ai/blog/hacking-google-antigravity
Understanding and Experimenting with Apple's Pointer Authentication Codes (PAC) on iOS
https://blog.reversesociety.co/blog/2026/pointer-authentication-code-for-ios
GatewayToHeaven: Finding a Cross-Tenant Vulnerability in GCP's Apigee
https://omeramiad.com/posts/gatewaytoheaven-gcp-cross-tenant-vulnerability/
Iframe Sandbox Trick
Triggering Authentication Dialogs Without allow-popups
https://phor3nsic.github.io/2026/01/21/trick-iframe-sandbox.html
Account Takeover in Facebook mobile app due to usage of cryptographically unsecure random number generator and XSS in Facebook JS SDK
https://ysamm.com/uncategorized/2026/01/17/math-random-facebook-sdk.html
Leaking Meta FXAuth Token leading to 2 click Account Takeover
https://ysamm.com/uncategorized/2026/01/16/leaking-fxauth-token.html
Multiple cross-site leaks disclosing Facebook users in third-party websites
https://ysamm.com/uncategorized/2026/01/16/cross-site-leaks.html
Datr cookie theft and AI leads to Facebook account takeover via trusted device recovery
https://ysamm.com/uncategorized/2026/01/15/steal-dtsg-cookie.html
Multiple XSS in Meta Conversion API Gateway Leading to Zero-Click Account Takeover
https://ysamm.com/uncategorized/2026/01/13/capig-xss.html
Multiple XSS in Meta Conversion API Gateway Leading to Zero-Click Account Takeover
https://ysamm.com/uncategorized/2025/01/13/capig-xss.html
Burp MCP + Codex CLI
This guide shows how to connect Burp Suite MCP Server to Codex CLI so that Codex can reason directly on your real HTTP traffic — no API keys, no scanning, no fuzzing.
https://pentestbook.six2dez.com/others/burp#burp-mcp?codex-cli
Two CVEs, Zero Ego: A Mailpit Story
https://rosecurify.com/two-cves-zero-ego-a-mailpit-story/
Do Smart People Ever Say They’re Smart? (SmarterTools SmarterMail Pre-Auth RCE CVE-2025-52691)
https://labs.watchtowr.com/do-smart-people-ever-say-theyre-smart-smartertools-smartermail-pre-auth-rce-cve-2025-52691/
Do Smart People Ever Say They’re Smart? (SmarterTools SmarterMail Pre-Auth RCE CVE-2025-52691)
https://labs.watchtowr.com/do-smart-people-ever-say-theyre-smart-smartertools-smartermail-pre-auth-rce-cve-2025-52691/
GitHub - Chocapikk/CVE-2026-21858: n8n Ni8mare - Unauthenticated Arbitrary File Read to RCE Chain (CVSS 10.0)
https://github.com/Chocapikk/CVE-2026-21858
TRUSTING CLAUDE WITH A KNIFE: UNAUTHORIZED PROMPT INJECTION TO RCE IN ANTHROPIC’S CLAUDE CODE ACTION
https://johnstawinski.com/2026/02/05/trusting-claude-with-a-knife-unauthorized-prompt-injection-to-rce-in-anthropics-claude-code-action/
Evaluating and mitigating the growing risk of LLM-discovered 0-days
https://red.anthropic.com/2026/zero-days/
Leaking the phone number of any Google user
https://brutecat.com/articles/leaking-google-phones
Cloudflare Zero-day: Accessing Any Host Globally
https://fearsoff.org/research/cloudflare-acme
Compromising a NASDAQ Financial Giant
https://estse.github.io/posts/compromising-a-nasdaq-financial-giant/
Instagram account takeover via Meta Pixel script abuse
https://ysamm.com/uncategorized/2026/01/16/leaking-fbevents-ato.html
Two-click Facebook account takeover via FXAuth token and blob theft
https://ysamm.com/uncategorized/2026/01/15/steal-fxauth-leads-instagram-ato.html
Self-XSS in Facebook payments flow leads to Instagram and Facebook account takeovers
https://ysamm.com/uncategorized/2026/01/15/self-xss-facebook-payments.html
CodeBreach: Infiltrating the AWS Console Supply Chain and Hijacking AWS GitHub Repositories via CodeBuild
https://www.wiz.io/blog/wiz-research-codebreach-vulnerability-aws-codebuild
Burp MCP Agents
Practical setup guides and helpers to connect Burp Suite MCP Server to multiple AI backends
https://github.com/six2dez/burp-mcp-agents
Droid LLM Hunter is a tool to scan for vulnerabilities in Android applications using Large Language Models (LLMs)
https://github.com/roomkangali/droid-llm-hunter
Arista Firewall XSS to RCE Chain
https://bishopfox.com/blog/arista-nextgen-firewall-xss-to-rce-chain
Case study: How Libya’s Leading Host - Libyan Spider - Blocked 65k+ Threats with Patchstack - Patchstack
https://patchstack.com/articles/case-study-how-libyas-leading-host-libyan-spider-blocked-65k-threats-with-patchstack/
Seahawk Media Partners with Patchstack to Strengthen WordPress Security - Patchstack
https://patchstack.com/articles/seahawk-media-partners-with-patchstack-to-strengthen-wordpress-security/
Predator iOS Malware: Building a Surveillance Framework - Part 1 | Reverse Society
https://blog.reversesociety.co/blog/2025/predator-ios-malware-surveillance-framework-part-1