Write-ups
Check The Published Writeups
| WDB | Title | Tags | Programs | Authors | Type | Publication | Added |
|---|---|---|---|---|---|---|---|
| 1994 | GHSL-2021-1053: Path traversal in Grafana REST API - CVE-2021-43813, CVE-2021-43815 | Path traversal | Grafana Labs | Alvaro Muñoz (@pwntester) | Bug Bounty | 2021-12-15 | 2023-06-13 |
| 538 | Bypassing OGNL sandboxes for fun and charities | OGNL injection | Atlassian Apache Struts | Alvaro Muñoz (@pwntester) | Bug Bounty | 2023-01-27 | 2023-06-13 |
| 357 | GitHub Security Lab audited DataHub: Here’s what they found | SSRF Insecure deserialization Cypher injection Authentication bypass Authorization bypass XSS Open redirect JWT JSON injection Cryptographic issues Session expiration issue Security code review | DataHub | Alvaro Muñoz (@pwntester) | Bug Bounty | 2023-03-03 | 2023-06-13 |