5080 | AWS S3 bucket misconfiguration - Paytm |
AWS misconfiguration |
Paytm |
Tutorgeeks (@tutorgeeks) |
Bug Bounty | 2017-04-18 | 2023-06-13 |
4940 | How to delete all company progress by one "rm" command in AWS s3 Buckets |
AWS misconfiguration |
NA |
Valeriy Shevchenko (@Krevetk0Valeriy) |
Bug Bounty | 2017-11-09 | 2023-06-13 |
4893 | #BugBounty — AWS S3 added to my “Bucket” list! |
AWS misconfiguration |
NA |
Avinash Jain (@logicbomb_1) |
Bug Bounty | 2018-01-16 | 2023-06-13 |
4640 | S3 Bucket Misconfiguration in Amazon |
AWS misconfiguration |
Amazon |
Divyanshu Shukla (@justm0rph3u5) |
Bug Bounty | 2018-08-11 | 2023-06-13 |
4613 | https://medium.com/@mahitman1/i-own-your-customers-22e965761abd |
Information disclosure
Hardcoded credentials
AWS misconfiguration |
NA |
Muhammad Abdullah |
Bug Bounty | 2018-09-01 | 2023-06-13 |
4282 | Download any organisation Data — S3 amazonaws Misconfiguration |
Authorization flaw |
NA |
Chand Singh (@Chand_42) |
Bug Bounty | 2019-02-22 | 2023-06-13 |
4100 | How I earned $1,500 in just 15 mins due to Amazon S3 bucket misconfiguration? |
AWS misconfiguration |
Dropbox |
Muhammad Asim Shahzad (@protector47) |
Bug Bounty | 2019-06-16 | 2023-06-13 |
4054 | Information Disclosure via Misconfigured AWS to AWS Bucket Takeover |
AWS misconfiguration |
NA |
Pratyush Anjan Sarangi |
Bug Bounty | 2019-07-08 | 2023-06-13 |
3766 | From broken link to subfolder takeover on Bukalapak |
AWS misconfiguration |
Bukalapak |
wis4nggeni |
Bug Bounty | 2019-12-23 | 2023-06-13 |
3727 | How I earn $500 from Razer open S3 bucket |
AWS misconfiguration |
Razer |
Sourav Sahana (@kernel_rider) |
Bug Bounty | 2020-01-12 | 2023-06-13 |
3685 | How, I dumped crypto data by chaining directory listing to open S3 Bucket |
AWS misconfiguration
Directory listing
Information disclosure |
NA |
Ddigvijay |
Bug Bounty | 2020-02-05 | 2023-06-13 |
3644 | Write-up: AWS Document Signing Security Control Bypass |
AWS misconfiguration |
NA |
Ozgur Alp (@ozgur_bbh) |
Bug Bounty | 2020-02-26 | 2023-06-13 |
3348 | Misconfigured S3 Bucket Access Controls to Critical Vulnerability |
AWS misconfiguration |
NA |
Harsh Bothra (@harshbothra_) |
Bug Bounty | 2020-07-02 | 2023-06-13 |
3281 | Obtained a bunch of sensitive data in just few steps — Hacking |
AWS misconfiguration
Information disclosure |
NA |
Airlangga Visnhu Murthi |
Bug Bounty | 2020-07-26 | 2023-06-13 |
2972 | How I dumped PII information of customers in an ecommerce site? |
AWS misconfiguration |
NA |
Rikesh Baniya / NotRickyy (@rikeshbaniya) |
Bug Bounty | 2020-12-11 | 2023-06-13 |
2959 | Misconfigured s3 bucket leads to Sensitive Data exposure(No super controls ) |
AWS misconfiguration |
NA |
Virdoexhunter |
Bug Bounty | 2020-12-18 | 2023-06-13 |
2795 | From AWS S3 Misconfiguration to Sensitive Data Exposure |
AWS misconfiguration |
NA |
Jadek Mark (@mase289) |
Bug Bounty | 2021-02-17 | 2023-06-13 |
2636 | Lets Learn English - Hacking 10M+ Users |
AWS misconfiguration
Insecure Firebase database
OTP bypass
Account takeover
Logic flaw |
NA |
Aseem Shrey (@AseemShrey) |
Bug Bounty | 2021-04-17 | 2023-06-13 |
2443 | Misconfigured $3 Bucket - A Semi Opened Environment |
AWS misconfiguration |
Redbull |
Yukesh Kumar (@3th1c_yuk1) |
Bug Bounty | 2021-06-27 | 2023-06-13 |
2397 | How I was able Find mass leaked AWS s3 bucket from js File |
AWS misconfiguration |
NA |
Santosh Kumar Sha (@killmongar1996) |
Bug Bounty | 2021-07-20 | 2023-06-13 |
2374 | How I earned $$$$ by Amazon S3 Bucket misconfigurations? |
AWS misconfiguration
Subdomain takeover |
NA |
Abdullah Mohamed (@3bodymo_) |
Bug Bounty | 2021-07-29 | 2023-06-13 |
2309 | Playing With s3 Leaks |
AWS misconfiguration |
NA |
Aswin Thambi Panikulangara (@r0074g3n7) |
Bug Bounty | 2021-08-21 | 2023-06-13 |
2255 | How @Mailru traeted my report on their program |
AWS misconfiguration |
Mail.ru |
Aý Oùb (@Yukusawa18) |
Bug Bounty | 2021-09-03 | 2023-06-13 |
2011 | From Finding AWS S3 Bucket to Sensitive Data Exposure |
AWS misconfiguration |
NA |
Demon (@R29k_) |
Bug Bounty | 2021-12-09 | 2023-06-13 |
2010 | Exploiting S3 bucket with path folder to Access PII info of A BANK |
AWS misconfiguration
Information disclosure |
NA |
Santosh Kumar Sha (@killmongar1996) |
Bug Bounty | 2021-12-09 | 2023-06-13 |