Oct 2022 - Present
Varma Kollu
- @itsvarmakollu
- Security Researcher
- He/Him
Resume
Jan 2019 - Present
Founder , TUTORIAL BOY
Oct 2022 - Present
SEcurity Researcher, bugcrowd
Links
Portfolio
The Blind Exploits To Rule Watchguard Firewalls Vulnerabilities
Introduction Source :- https://tutorialboy24.blogspot.com/2022/07/cross-site-scripting-vulnerabilities-in.html WordPress is used by more than 60 million websites, including 33.6% of the top 10 mill...
Introduction WordPress is used by more than 60 million websites, including 33.6% of the top 10 million websites as of February 2022, WordPress is one of the most popular content management system s...
Bug Bounty
Server-Side Request Forgery in Java by URLConnection Method Source:- https://tutorialboy24.blogspot.com/2022/04/server-side-request-forgery-in-java-by.html Vulnerability Description Server Request ...
PHP - A File Inclusion Vulnerability Source:- https://tutorialboy24.blogspot.com/2021/12/php-file-inclusion-vulnerability_19.html Definition A file inclusion vulnerability is attributable to the PH...
POC
View All
Source:- https://tutorialboy24.blogspot.com/2022/07/an-ognl-injection-remote-code-execution.html An Atlassian published a security advisory about a critical severity Unauthenticated Remote Code Exe...
Source:- https://tutorialboy24.blogspot.com/2022/06/the-spring-data-mongodb-spel-expression.html Overview We would like to announce that we have released Spring Data MongoDB 3.4.1 and 3.3.5 to addr...
The Fastjson “Auto Type Bypass” leads to RCE vulnerability - CVE-2022-25845 Source : https://tutorialboy24.blogspot.com/2022/06/the-fastjson-auto-type-bypass-leads-to.html A few weeks ago, a new ve...
How to Fix MSDT Vulnerability using SCCM and Intune | CVE-2022-30190 Source:- https://tutorialboy24.blogspot.com/2022/06/how-to-fix-msdt-vulnerability-using.html#Introduction Introduction Let’s che...