Author Archive

[Bahasa] Tokopedia – Content Injection that could Result Reflected Cross Site Scripting

Author: | Categories: Write-Up in Bahasa No comments
I. ABSTRACT Pemberian informasi untuk melakukan aktivasi pada suatu akun yang baru didaftarkan merupakan salah satu fitur yang dapat dilihat oleh para pengguna (dalam konteks membeli) setelah selesai melakukan pendaftaran singkat. Akan tetapi, permasalahan muncul ketika halaman pemberian informasi untuk melakukan aktivasi ini tidak melakukan penyaringan terhadap karakter yang

Tokopedia – Unrestricted Deletion to All of People’s Bank Account

Author: | Categories: Bug Report, Web Apps, Write-Up No comments
I. ABSTRACT The simplicity in receiving payment from the online sales is certainly a dream for every seller. For actualizing this simplicity, Tokopedia has launched a feature which is “Tambah Rekening Bank” (Adding Bank Account) that could be used to receive the sales payment after every transaction processes to

Tokopedia – Content Injection that could Result Reflected Cross Site Scripting

Author: | Categories: Bug Report, Web Apps, Write-Up No comments
I. ABSTRACT Provision of information for activating a new-registered account is one of the features that could be seen by the user (in context of buying) after finishing a short sign-up process. However, the problem occurs when the page that provides the information doesn’t do any filtering to the

[Bahasa] Bypassing the Limitation of Brute Force Attack (“Smart Password Lockout”) on Microsoft Service Account

Author: | Categories: Write-Up in Bahasa No comments
Illustration from Microsoft (edited by us) I. ABSTRACT Mengerjakan pekerjaan sehari-hari secara mobile merupakan hal yang sudah hampir tidak terelakan bagi sebagian besar pengguna di dunia terutama di kalangan professional. Mengirim surat elektronik, membuat dokumen, mengakses informasi kontak, sampai melakukan komunikasi dengan audio maupun audio visual merupakan hal umum

Bypassing the Limitation of Brute Force Attack (“Smart Password Lockout”) on Microsoft Service Account

Author: | Categories: Bug Report, Web Apps, Write-Up No comments
Illustration from Microsoft (edited by us) note: maybe readers will found many grammar mistakes in this article. However, we wish we could deliver the main point of this article. I. ABSTRACT Doing groove in mobile is almost an inevitable thing for most of users in the world especially in

Bug Report / Publication

Author: | Categories: Bug Report No comments
List of Bug Report / Publication (sort by date): General information could be found at https://id.linkedin.com/in/config (2013 – 2018)  

[Bahasa] LINE Chat – Unencrypted Chat Messages and Unauthorized Access to Message Attachments

Author: | Categories: Write-Up in Bahasa No comments
Ilustrasi dari Line.me I. ABSTRACT Berkirim pesan singkat sering kali menjadi aktivitas sehari-hari yang tidak terlepaskan hamper di sebagian besar kalangan pada era saat ini. Perkembangan teknologi yang diiringi dengan ketersediaan paket InterNet yang cukup terjangkau untuk di sebagian besar kalangan pun telah menjadi pelopor tersendiri untuk munculnya aplikasi

LINE Chat – Unencrypted Chat Messages and Unauthorized Access to Message Attachments

Author: | Categories: Bug Report, Mobile Apps, Write-Up No comments
Illustration from Line.me I. ABSTRACT Sending short messages is a daily activity which is hard to be separated from the most societies in this era. Technology developing which is followed by the availability of internet packet that is easy to be achieved for most societies, is being the forerunner

[Late Post] Unencrypted iTunes Store Password on iOS 7.1.x

Author: | Categories: Mobile Apps, Write-Up No comments
Illustration – Credits to TomsGuide.com for the Figure or, I prefer to say: “Don’t ever leave your iDevice without Passcode” for this article. I. ABSTRACT Technology is developing so fast nowadays, and it can’t be denied that it’s helping people to finish their works & most of them are

[Bahasa] Passcode Vulnerability on Pocket Expense <= 4.5.1

Author: | Categories: Write-Up in Bahasa No comments
I. ABSTRACT Di dalam kehidupan sehari-hari, sering kali seseorang mengalami kesulitan dalam mengatur pola keuangannya dengan tepat. Pengaturan ini sendiri pada umumnya dapat berupa pencatatan aktivitas pemasukan ataupun pengeluaran baik yang sudah lalu maupun yang akan datang. Di era yang serba digital seperti sekarang ini, pencatatan secara manual tentunya