whoami
About Me & Blog
I am a Researcher at Universitas Sriwijaya, and I served as an Undergraduate Teaching Assistant and was actively involved in information security research. I was previously an M.Sc in Electrical Engineering and Computer Science (EECS) Department. National Taipei University of Technology. NTUT/Taipei Tech. 國立 臺北 大 科技, Taipei. Republic of China(RoC) Taiwan.
My interests span Information Security, Heteregenous Networks, Data Science, Machine Learning, Penetration Testing, and Capture The Flag(CTF).
- 📖 Research, Publications, and Works :
- 💻 Pentesting, CTF, Bug Hunting:
- 💸 Support My Works :
- 🏅 Certifications : OSCP, CEH Practical, EC-Council’s CSCU, MTCNA
My GitHub Stats
Projects - Internet of Things (IoT) datasets
Exploit-DB
Date | Title | Type | Platform |
---|---|---|---|
30/12/2021 | Hospitals Patient Records Management System 1.0 - Account TakeOver | Webapps | PHP |
30/12/2021 | Hospitals Patient Records Management System 1.0 - ‘id’ SQL Injection (Authenticated) | Webapps | PHP |
05/01/2022 | Online Veterinary Appointment System 1.0 - ‘Multiple’ SQL Injection | Webapps | PHP |
07/01/2022 | Online Railway Reservation System 1.0 - ‘id’ SQL Injection (Unauthenticated) | Webapps | PHP |
12/06/2022 | Old Age Home Management System 1.0 - SQLi Authentication Bypass | Webapps | PHP |
Common Vulnerabilities and Exposures (CVE)
CVE | Title |
---|---|
CVE-2021-24614 | Book appointment Online < 1.39 - Authenticated Stored Cross-Site Scripting (XSS) |
CVE-2021-24621 | WP Courses LMS < 2.0.44 - Authenticated Stored XSS via Video Embed Code |
CVE-2021-24622 | WP Ticket < 5.10.4 - Admin+ Stored Cross-Site Scripting |
CVE-2021-24623 | WordPress Advanced Ticket System < 1.0.64 - Authenticated Stored Cross-Site Scripting (XSS) |
CVE-2022-2395 | weForms < 1.6.14 - Admin+ Stored Cross-Site Scripting |
Disclaimer
I write in this blog, especially the many technical aspects of information security, and some of the posts are using Bahasa Indonesia language. The author tries to provide some of the tutorials, writeups in the English Language. All the information provided on http://twseptian.github.io is for educational purposes only. The author does not take responsibility regarding some of the destruction caused from the attacker and if they say some of their action from this blog. For full description about disclaimer, please navigate to disclaimer