Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
3814IDOR via Websockets IDOR NA Shuaib Oladigbolu (@_sawzeeyy) Bug Bounty2019-11-232023-06-13
2809IDOR via Websockets allow me to takeover any users account IDOR NA Mohsin Khan (@tabaahi_) Bug Bounty2021-02-142023-06-13
2044[socket.io] Cross-Site Websockets Hijacking Cross-Site Websocket Hijacking (CSWH) Node.js third-party modules sh1yo (@sh1yo_) Bug Bounty2021-11-292023-06-13
1540Gaining access through error-based SQLi using WebSockets SQL injection Websockets Password reset NA Bitcrack (@bitcrack_cyber) Bug Bounty2022-01-122023-06-13
693CVE-2021-43444 to 43449: Exploiting ONLYOFFICE Web Sockets for Unauthenticated Remote Code Execution Websockets RCE Arbitrary file write Path traversal OnlyOffice Iain Wallace (@strawp) Bug Bounty2022-12-142023-06-13
691CVE-2021-43444 to 43449: Exploiting ONLYOFFICE Web Sockets for Unauthenticated Remote Code Execution Websockets XSS RCE Arbitrary file write Path traversal OnlyOffice Iain Wallace (@strawp) Bug Bounty2022-12-142023-06-13
410Decoding BlazorPack Websockets NA Rogan Dawes (@RoganDawes) Bug Bounty2023-02-222023-06-13
371Gitpod remote code execution 0-day vulnerability via WebSockets RCE Websockets Cross-Site WebSocket Hijacking (CSWH) Cloud Samesite cookie bypass Account takeover Gitpod Elliot Ward Bug Bounty2023-03-012023-06-13
293CHECKMATE Websockets Logic flaw Chess.com Oded Vaanunu Bug Bounty2023-03-162023-06-13
101Rendezvous with a Chatbot: Chaining Contextual Risk Vulnerabilities Chatbot Websockets Cross-Site WebSocket Hijacking (CSWH) Captcha bypass NA Abeer Banerjee (@bugasur) Bug Bounty2023-05-112023-06-13