security researcher

NAVEEN
JAGADEESAN

Security Analyst CRTP Certified Bug Bounty Hunter

6+ years breaking applications ethically. 300+ pentests, 50+ code reviews across Web, API, Mobile & Thick Client platforms. Writing about what I find.

Working at Societe Generale & previously SISA Information Security.

Read Writeups Whoami

300+

Pentests

Writeups

Years

50+

Code Reviews

Latest Writeups

Vulnerability

OS Command Injection → Remote Code Execution

Dec 10, 2024 // critical

Business Logic

Hotel Booking Hack: Free Diamond Subscriptions & 12% Discounts

Oct 31, 2023 // high

Mass Assignment

Database Dump via Mass Assignment Vulnerability

Jul 13, 2023 // critical

Writeup

WAF Bypass → SQL Injection Database Dump

May 30, 2023 // high

View all 21 posts →

Connect

NAVEENJAGADEESAN

NAVEEN
JAGADEESAN