xyzeva
@xyz3va
Followers
18K
Following
226
Media
80
Statuses
539
(un)professional hacker | part of https://t.co/aKL2j2fXq3 and https://t.co/JyJKHL5O9Y
she/her
Joined October 2023
update! @cursor_ai is donating me $50,000 USD for my efforts with the todesktop vulnerability.
how to gain code execution on millions of people and hundreds of popular apps.and of course, firebase was (partially) the cause.
150
56
3K
firebase with no ratelimit nextjs ai api endpoints. i dont think y'all understand how big of a problem vibe coding is for security.
guys, i'm under attack. ever since I started to share how I built my SaaS using Cursor. random thing are happening, maxed out usage on api keys, people bypassing the subscription, creating random shit on db. as you know, I'm not technical so this is taking me longer that usual to.
51
79
2K
anyone that got invited to the browser company dia beta, can you dm me?.
11
2
165
if i follow you and you wanna be friends with me, please just dm me.
8
0
130
don't know how to beat the "how crazy is this blog post" scale after this latest blogpost.
2
0
129
the best part is that the website doesn't infringe on any of their trademarks, making the report invalid too.
2
1
338
rabbit tried to take down the rabbitude website with a trademark infringement claim . however, the company they hired to do the takedown didn't put the correct trademark registration number, leading to an invalid claim
11
27
986
update! @cursor_ai is donating me $50,000 USD for my efforts with the todesktop vulnerability.
4
2
336
for those wondering, in total i got 5k for this vuln, which i dont blame todesktop for because theyre a really small company.
5
3
321
how to gain code execution on millions of people and hundreds of popular apps.and of course, firebase was (partially) the cause.
105
293
3K
