Bhagavan Bollina

Security researcher focused on cloud security, red teaming, and vulnerability research. Covering AWS, GCP, IAM, SSRF, CVEs, and bug bounty.

  1. Archives
  2. Search
    1. Dark Mode

Archives

2026 1
2025 10
2023 5
2022 3

Tags

Cloudsecurity AWS EC2 IAM Privilege Esclation CVE Detection 0days Cloud Goat Exploitation Policies Red Teaming SSRF Web API Gateway API Keys Container RCE Flaws.cloud MongoDB Revshell
Featured image of post MongoBleed (CVE-2025-14847): Exploiting MongoDB's Zlib Memory Leak
Security Research

MongoBleed (CVE-2025-14847): Exploiting MongoDB's Zlib Memory Leak

A deep-dive into CVE-2025-14847 (MongoBleed) — an unauthenticated heap memory disclosure vulnerability in MongoDB's zlib compression layer that exposed 87,000+ servers and leaked plaintext credentials, AWS keys, and session tokens.

May 22, 2026
10 minute read
Featured image of post MongoDB: Exploiting MongoBleed Vulnerability CVE-2025-14847

MongoDB: Exploiting MongoBleed Vulnerability CVE-2025-14847

Dec 27, 2025
1 minute read
Featured image of post Ollama's Platform's API: Authentication Bypass Vulnerability CVE-2025-63389

Ollama's Platform's API: Authentication Bypass Vulnerability CVE-2025-63389

Dec 18, 2025
1 minute read
Featured image of post Exploiting React2Shell Vulnerability {CVE-2025-55182/66478}

Exploiting React2Shell Vulnerability {CVE-2025-55182/66478}

Dec 08, 2025
3 minute read
Featured image of post AWS Privilege Escalation via Vulnerable Cognito ~ CloudGoat

AWS Privilege Escalation via Vulnerable Cognito ~ CloudGoat

Jul 29, 2025
4 minute read
1 2 3 4
© 2022 - 2026 Bhagavan Bollina
Built with Hugo
Theme Stack designed by Jimmy