Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
5257Waze arbitrary file upload Unrestricted file upload XSS Google (Waze) Shashank (@cyberboyIndia) Bug Bounty2013-12-252023-06-13
5233Reading local files from Facebook%27s server (fixed) LFI Unrestricted file upload Meta / Facebook Josip Franjkovic (@josipfranjkovic) Bug Bounty2014-12-062023-06-13
5204Arbitary File Upload Vulnerability in Google Nest (Write Up) Unrestricted file upload Stored XSS Google Evan Ricafort (@evanricafort) Bug Bounty2015-12-212023-06-13
5194How I Hacked [Oculus] OAuth +Ebay +IBM Unrestricted file upload XSS Meta / Facebook Ebay IBM AnswerHub Abdullah Hussam (@Abdulahhusam) Bug Bounty2016-02-122023-06-13
5114How I could have Hacked IIT Guwahati’s website Unrestricted file upload IIT Guwahati Sai Krishna Kothapalli (@kmskrishna) Bug Bounty2017-01-092023-06-13
4911Unrestricted File Upload to RCE | Bug Bounty POC RCE Meta / Facebook Muhammad Khizer Javed (@khizer_javed47) Bug Bounty2017-12-192023-06-13
4720Manage Engine OpManager Multiple Authenticated RCE Vulnerabilities RCE Path traversal Unrestricted file upload Information disclosure Arbitrary file write Zoho (ManageEngine) Denis Andzakovic Bug Bounty2018-06-182023-06-13
4715How I hacked Apple.com (Unrestricted File Upload) Unrestricted file upload Apple Jonathan Bouman (@JonathanBouman) Bug Bounty2018-06-222023-06-13
4580Chain The Bugs to Pwn an Organisation ( LFI + Unrestricted File Upload = Remote Code Execution ) LFI Unrestricted file upload RCE NA Armaan Pathan (@armaancrockroax) Bug Bounty2018-09-182023-06-13
4472Spoofing file extensions on HackerOne Unrestricted file upload HackerOne Anurag Jain (@csanuragjain) Bug Bounty2018-11-162023-06-13
4388Abusing ACL Permissions to Overwrite other User’s Uploaded Files/Videos on s3 Bucket Unrestricted file upload Authorization flaw NA Armaan Pathan (@armaancrockroax) Bug Bounty2018-12-302023-06-13
4313How I hacked ASUS? Unrestricted file upload RCE Asus Mustafa Kemal Can (@muskecan) Bug Bounty2019-02-092023-06-13
4136From file upload to email:pass Unrestricted file upload NA fr0stNuLL Bug Bounty2019-05-242023-06-13
4104Complete Web Server Access Unrestricted file upload RCE NA Saad Ahmed (@XSaadAhmedX) Bug Bounty2019-06-152023-06-13
3925Exploiting File Uploads Pt. 2 – A Tale of a $3k worth RCE. Unrestricted file upload RCE NA HackerOn2Wheels (@HackerOn2Wheels) Bug Bounty2019-09-132023-06-13
3920Race Condition that could Result to RCE - (A story with an App that temporary stored an uploaded file within 2 seconds before moving it to Amazon S3) Race condition RCE Unrestricted file upload NA YoKo Kho (@YokoAcc) Bug Bounty2019-09-142023-06-13
3905[Bug Bounty] Exploiting Cookie Based XSS by Finding RCE Information disclosure SQL injection Authentication bypass Unrestricted file upload RCE XSS NA Tomi (@noobe_io) Bug Bounty2019-09-222023-06-13
3878How I found RCE But Got Duplicated Unrestricted file upload RCE NA Smile Hacker Bug Bounty2019-10-152023-06-13
3801Dank Writeup On Broken Access Control On An Indian Startup Unrestricted file upload Authorization flaw NA Divyanshu Shukla (@justm0rph3u5) Bug Bounty2019-11-302023-06-13
3728My First RCE (Stressed Employee gets me 2x bounty) Unrestricted file upload RCE NA Abhishek Yadav (@abhishake100) Bug Bounty2020-01-102023-06-13
3692Tumblr Bug Bounty ( $200) Unrestricted file upload XSS Authorization flaw Automattic Myo Min Thu (@myominthu1337) Bug Bounty2020-02-022023-06-13
3678Simple Remote Code Execution Vulnerability Examples for Beginners RCE Unrestricted file upload NA Ozgur Alp (@ozgur_bbh) Bug Bounty2020-02-052023-06-13
3673External XML Entity via File Upload (SVG) XXE Unrestricted file upload NA Atul (@atul_hax) Bug Bounty2020-02-082023-06-13
3664Uploading Backdoor For Fun And Profit. Unrestricted file upload RCE NA Mohammed Abdul Raheem (@mohdaltaf163) Bug Bounty2020-02-172023-06-13
3663How I Gain Unrestricted File Upload Remote Code Execution Bug Bounty Unrestricted file upload NA Shay Grant (@kidshay) Bug Bounty2020-02-172023-06-13