Posts tagged with #research

• 🔒 On-site and Off-site Search Algorithm Manipulation on LinkedIn

  Jan 31, 2026 (in 2 weeks) 1000 rvfet

  

  security research writeups

  Affected Company:

  LinkedIn

  How I discovered and responsibly reported an on-site and off-site search poisoning vulnerability that leads to indistinguishable user deception attacks on LinkedIn.

  Full Write-up

• CVSS 9.6 Account Takeover in Azerbaijan's Most Visited Platforms

  Dec 8, 2025 (last month) 1000 rvfet

  

  security research writeups

  Affected Companies:

  tap.az ,

  turbo.az

  How an OAuth token leakage through Open Redirect enabled complete account takeover on tap.az and turbo.az. A case study on critical vulnerabilities and exemplary vendor response by Digital Classifieds MMC.

  Azərbaycanca Full Write-up