Oct 21, 2025

How I Managed to Check Anyone’s SBI Bank Balance Using Just a Phone Number

 A parameter-tampering IDOR in a demat portal’s Get Balance workflow allowed unauthorized retrieval of account type and live Account balance by swapping the AccountNo value.

Jul 7, 2022

Exposing Millions of Voter ID card users’ details.

 Three critical bugs in India's voter portal led to the exposure of voter ID card users' data, impacting millions of individuals.