Revan A
Penetration Tester | Security Researcher
About Myself
Skills
- Web App Penetration Testing
- Mobile App Penetration Testing
- PHP
Certification
- eLearnSecurity Junior Penetration Tester (eJPTv2) | June, 2023
- Certified AppSec Practitioner (CAP) | December, 2022
- Certified Network Security Practitioner (CNSP) | December, 2023
Research Experience
- CVE-2023-4278: Masterstudy LMS <= 3.0.17 - Unauth. Instructor Account Creation
- CVE-2023-39308: User Feedback <= 1.0.7 - Uauth. Stored XSS
- CVE-2023-41954: ProfilePress <= 4.13.1 - Unauth. Limited Privilege Escalation
- CVE-2023-47837: ARMember <= 4.0.10 - Bypass Membership Plan
- CVE-2023-51356: ARMember <= 4.0.10 - Authenticated Privilege Escalation
- CVE-2023-48763: JetFormBuilder <= 3.1.4 - Unauthenticated HTML Injection
- CVE-2023-46310: wpDiscuz <= 7.6.10 - Unauthenticated HTML Injection
- CVE-2023-46311: wpDiscuz <= 7.6.3 - (Author+) Insecure Direct Object Reference