Hi there👋

Welcome to my site!

My name is Saajan Bhujel. I’m a Bug Bounty Hunter👨‍💻, I like to secure the web & apps, and this site is a place where I express myself😎, share my write-ups📝 and knowledge✨. I hope you find the content useful🔰 and enjoyable🤟. Any feedback⚡ is always more than welcome.

“You will face many defeats in life, but never let yourself be defeated.”

Latest Posts

How I Got $10,000 From GitHub For Bypassing Filtration oF HTML tags

How I Got $10,000 From GitHub For Bypassing Filtration oF HTML tags

In today’s blog, I am going to tell you that, “How I Got $10,000 From GitHub For Bypassing A Filtration oF HTML tags” in the MathJax feature. Continue reading How I Got $10,000 From GitHub For Bypassing Filtration oF HTML tags

XSS Through Parameter Pollution

XSS Through Parameter Pollution

In this blog, I was able to perform an XSS attack with the help of Parameter pollution which bypasses target’s restriction. Continue reading XSS Through Parameter Pollution

Password Reset Token Leak via X-Forwarded-Host

Password Reset Token Leak via X-Forwarded-Host

This blog is about a vulnerability that, I was able to find in the Hackerone’s private program which allows me to takeover any user’s account. Continue reading Password Reset Token Leak via X-Forwarded-Host