Write-ups

Check The Published Writeups

WDBTitleTagsProgramsAuthorsTypePublicationAdded
5316Stored Cross-Site Scripting (XSS) via DNS Record Poisoning XSS Stored XSS Rengine Touhid M Shaikh Bug Bounty2024-08-232024-08-27
5286Google.com cross site scripting and privilege escalation in Consumer Surveys Stored XSS Authorization flaw Google Josip Franjkovic (@josipfranjkovic) Bug Bounty2013-01-032023-06-13
5249A Tale of 7 Vulnerabilities Stored XSS Reflected XSS Default credentials Privilege escalation Paypal Patrik Fehrenbach (@ITSecurityguard) Bug Bounty2014-04-202023-06-13
5244Facebook – Stored Cross-Site Scripting (XSS) – Badges Stored XSS Meta / Facebook Brett Buerhaus (@bbuerhaus) Bug Bounty2014-06-162023-06-13
5236Paypal stored XSS + Security bypass Stored XSS Paypal Patrik Fehrenbach (@ITSecurityguard) Bug Bounty2014-11-112023-06-13
5204Arbitary File Upload Vulnerability in Google Nest (Write Up) Unrestricted file upload Stored XSS Google Evan Ricafort (@evanricafort) Bug Bounty2015-12-212023-06-13
5173Sleeping stored Google XSS Awakens a $5000 Bounty Stored XSS Google Patrik Fehrenbach (@ITSecurityguard) Bug Bounty2016-05-172023-06-13
5169RunKeeper Stored XSS Vulnerability – Where worms are able to run too! Stored XSS CSRF RunKeeper Mohamed A. Baset Bug Bounty2016-06-062023-06-13
5134Persisting on Pornhub Stored XSS PornHub Andy Gill (@ZephrFish) Bug Bounty2016-09-232023-06-13
5123Stored XSS in UniFi v4.8.12 Controller Stored XSS Ubiquity Networks Shubham Gupta (@hackerspider1) Bug Bounty2016-11-122023-06-13
5122Svg XSS in Unifi v5.0.2 Stored XSS Ubiquity Networks Shubham Gupta (@hackerspider1) Bug Bounty2016-11-132023-06-13
5103Lightweight markup: a trio of persistent XSS in GitLab Stored XSS GitLab Yasin Soliman (@SecurityYasin) Bug Bounty2017-02-152023-06-13
5096One company: 262 bugs, 100% acceptance, 2.57 priority, millions of user details saved. Stored XSS Blind XSS CSRF Account takeover IDOR NA Zseano (@zseano) Bug Bounty2017-02-252023-06-13
5074A pair of Plotly bugs: Stored XSS and AWS Metadata SSRF Stored XSS SSRF Plotly Yasin Soliman (@SecurityYasin) Bug Bounty2017-05-252023-06-13
5072XSS on Google{5.000$}-Google Vulnerability Reward Program (VRP) Stored XSS Google - Bug Bounty2017-05-302023-06-13
5065Stored XSS, CSRF And Clickjacking Vulnerabilities in Opera Stored XSS CSRF Clickjacking Opera Rafay Baloch (@rafaybaloch) Bug Bounty2017-06-012023-06-13
5052Stored XSS in the heart of the Russian email provider giant (Mail.ru) Stored XSS Mail.ru Seif Elsallamy (@seifelsallamy) Bug Bounty2017-06-242023-06-13
5045Stored XSS in Bandcamp Stored XSS Bandcamp Corben Leo (@hacker_) Bug Bounty2017-06-302023-06-13
5041Medium Content Spoofing Leads to XSS Content spoofing Stored XSS Medium Abdullah Hussam (@Abdulahhusam) Bug Bounty2017-07-082023-06-13
5037How we tookover shopify accounts with one single click Stored XSS Shopify WeSecureApp (@wesecureapp) Bug Bounty2017-07-102023-06-13
5028That Escalated Quickly : From partial CSRF to reflected XSS to complete CSRF to Stored XSS CSRF Reflected XSS Stored XSS NA Mandeep Jadon (@1337tr0lls) Bug Bounty2017-07-192023-06-13
5020Stored XSS on Rockstar Game XSS Rockstar Games Arbaz Hussain (@ArbazKiraak) Bug Bounty2017-07-262023-06-13
4982Stored XSS] with arbitrary cookie installation XSS NA Arbaz Hussain (@ArbazKiraak) Bug Bounty2017-09-172023-06-13
4979Exploiting a Single Request for Multiple Vulnerabilities Stored XSS Reflected XSS SSRF OS command injection NA Osama Ansari (@AnsariOsama10) Bug Bounty2017-09-192023-06-13
4973Stored XSS to Full Information disclosure Stored XSS Terapeak Shubham Gupta (@hackerspider1) Bug Bounty2017-09-212023-06-13