Hi there👋
Welcome to my site!
My name is Saajan Bhujel. I’m a Bug Bounty Hunter👨💻, I like to secure the web & apps, and this site is a place where I express myself😎, share my write-ups📝 and knowledge✨. I hope you find the content useful🔰 and enjoyable🤟. Any feedback⚡ is always more than welcome.
“You will face many defeats in life, but never let yourself be defeated.”
Latest Posts
![How I Got $10,000 From GitHub For Bypassing Filtration oF HTML tags](https://images.weserv.nl/?url=assets.bhujel.cyou/img/saajan.bhujel.cyou/posts/github-bypassing-filtration-of-html-tags-blog/how-i-got-10000-from-github-for-bypassing-filtration-of-html-tags.png)
How I Got $10,000 From GitHub For Bypassing Filtration oF HTML tags
In today’s blog, I am going to tell you that, “How I Got $10,000 From GitHub For Bypassing A Filtration oF HTML tags” in the MathJax feature. Continue reading How I Got $10,000 From GitHub For Bypassing Filtration oF HTML tags
![XSS Through Parameter Pollution](https://images.weserv.nl/?url=assets.bhujel.cyou/img/saajan.bhujel.cyou/posts/xss-through-parameter-pollution-blog/xss-through-parameter-pollution-title.png)
XSS Through Parameter Pollution
In this blog, I was able to perform an XSS attack with the help of Parameter pollution which bypasses target’s restriction. Continue reading XSS Through Parameter Pollution
![Password Reset Token Leak via X-Forwarded-Host](https://images.weserv.nl/?url=assets.bhujel.cyou/img/saajan.bhujel.cyou/posts/password-reset-blog/webp/password-reset-title.webp)
Password Reset Token Leak via X-Forwarded-Host
This blog is about a vulnerability that, I was able to find in the Hackerone’s private program which allows me to takeover any user’s account. Continue reading Password Reset Token Leak via X-Forwarded-Host