Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
5288Facebook FBML DOM Traversal (Information Disclosure) Information disclosure Meta / Facebook Matt Austin (@mattaustin) Bug Bounty2011-08-232023-06-13
5255How I hacked Github again. Open redirect Account takeover Information disclosure GitHub Egor Homakov (@homakov) Bug Bounty2014-02-072023-06-13
5254How I was able to track the location of any Tinder user. Information disclosure Tinder Max Veytsman (@mveytsman) Bug Bounty2014-02-192023-06-13
5251Google Exploit – Steal Account Login Email Addresses Information disclosure Google Tom Anthony (@TomAnthonySEO) Bug Bounty2014-03-082023-06-13
5247Google Docs %27ClickJacking%27 (Information Disclosure) Clickjacking Google Matt Austin (@mattaustin) Bug Bounty2014-05-132023-06-13
5240Yahoo phpinfo.php disclosure Information disclosure Yahoo! / Verizon Media Patrik Fehrenbach (@ITSecurityguard) Bug Bounty2014-10-162023-06-13
5221Telegram App Store Secret-Chat Messages in Plain-Text Database Privacy issue Information disclosure Telegram Jon Paterson (@shellprompt) Bug Bounty2015-02-232023-06-13
5192Hacking Magento eCommerce For Fun And 17.000 USD Information disclosure LFI RFI Adobe Egidio Romano / EgiX Bug Bounty2016-03-032023-06-13
5185Facebook Invitees Email Address Disclosure Information disclosure Meta / Facebook Shahar Albeck Bug Bounty2016-04-032023-06-13
5172When your privacy disclosure is a “feature” not a “bug” – Badoo & HotorNot failure! Information disclosure Badoo Hot Or Not Mohamed A. Baset Bug Bounty2016-05-172023-06-13
5168Popping the Pornhub Cherry Information disclosure PornHub Andy Gill (@ZephrFish) Bug Bounty2016-06-072023-06-13
5167Why you shouldn’t share links on Facebook Information disclosure Meta / Facebook Inti De Ceukelaire (@securinti) Bug Bounty2016-06-092023-06-13
5163Uber Hacking: How we found out who you are, where you are and where you went Bruteforce Information disclosure Logic flaw IDOR Uber Vitor “r0t” Oliveira (@r0t1v) Bug Bounty2016-06-242023-06-13
5159Stealing Facebook access_tokens using CSRF in device login flow CSRF OAuth Information disclosure Meta / Facebook Josip Franjkovic (@josipfranjkovic) Bug Bounty2016-07-192023-06-13
5157Twitter%27s Vine Source code dump - $10080 Source code disclosure Information disclosure Twitter avicoder (@avicoder) Bug Bounty2016-07-222023-06-13
5106Bypassed Facebook Phone Number Security Authorization flaw Logic flaw Information disclosure Meta / Facebook Zahid Ali Bug Bounty2017-02-102023-06-13
5084Critical information disclosure on Wappalyzer.com Information disclosure Wappalyzer Davide Tampellini (@tampe125) Bug Bounty2017-03-242023-06-13
5034How to find internal subdomains? YQL, Yahoo! and bug bounty. Information disclosure Yahoo! / Verizon Media Wojciech Bug Bounty2017-07-162023-06-13
5013How i found massive information disclosure of 1500 famous people Information disclosure NA Valeriy Shevchenko (@Krevetk0Valeriy) Bug Bounty2017-07-312023-06-13
4973Stored XSS to Full Information disclosure Stored XSS Terapeak Shubham Gupta (@hackerspider1) Bug Bounty2017-09-212023-06-13
4959How I was Able to see someone’s all private files with a single file share link through Atom feed & Never Give Up #togetherwehitharder HackerOne Information disclosure NA Yogendra Jaiswal (@vulnh0lic) Bug Bounty2017-10-132023-06-13
4955Sensitive data exposure by requesting a resource with a different content type Information disclosure NA Yogendra Jaiswal (@vulnh0lic) Bug Bounty2017-10-172023-06-13
4948Senstive Information Leak Lead To join any Organisation Information disclosure NA Shivbihari Pandey (@ninja_pandit_) Bug Bounty2017-11-042023-06-13
4890My Research on Misconfigured Jenkins Servers Information disclosure Missing authentication Exposed Jenkins instance Google Tesco Pearson News Uk Mikail Tunç (@emtunc) Bug Bounty2018-01-182023-06-13
4875Getting access to prompt debug dialog and serialized tool on main website facebook.com Information disclosure Debug mode enabled Meta / Facebook Omar Espino (@omespino) Bug Bounty2018-01-312023-06-13