Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
5033ctrl+c & ctrl+v to Steal SESSIONID Clickjacking NA Arbaz Hussain (@ArbazKiraak) Bug Bounty2017-07-182023-06-13
5032IDOR While Connecting Social Account in Hackster.io IDOR Hackster.io Arbaz Hussain (@ArbazKiraak) Bug Bounty2017-07-182023-06-13
5031Stealing Access Token of One-drive Integration By Chaining CSRF Vulnerability OAuth CSRF NA Arbaz Hussain (@ArbazKiraak) Bug Bounty2017-07-182023-06-13
5030Exploiting Misconfigured CORS on popular BTC Site CORS misconfiguration NA Arbaz Hussain (@ArbazKiraak) Bug Bounty2017-07-192023-06-13
5029Xss using dynamically generated js file XSS NA Arbaz Hussain (@ArbazKiraak) Bug Bounty2017-07-192023-06-13
5026Self XSS to Good XSS Clickjacking XSS Clickjacking NA Arbaz Hussain (@ArbazKiraak) Bug Bounty2017-07-202023-06-13
5025Race Condition bypassing team limit Race condition NA Arbaz Hussain (@ArbazKiraak) Bug Bounty2017-07-202023-06-13
5024Missing Authorization check in Facebook Pages Manager Authorization flaw Meta / Facebook Arbaz Hussain (@ArbazKiraak) Bug Bounty2017-07-202023-06-13
5020Stored XSS on Rockstar Game XSS Rockstar Games Arbaz Hussain (@ArbazKiraak) Bug Bounty2017-07-262023-06-13
5014Referer Based XSS XSS NA Arbaz Hussain (@ArbazKiraak) Bug Bounty2017-07-302023-06-13
5000Pre-domain wildcard CORS Exploitation CORS misconfiguration NA Arbaz Hussain (@ArbazKiraak) Bug Bounty2017-08-262023-06-13
4998Bypassing Rate Limit Protection by spoofing originating IP Bruteforce NA Arbaz Hussain (@ArbazKiraak) Bug Bounty2017-08-302023-06-13
4997Improper Storage of Private Project’s Files IDOR NA Arbaz Hussain (@ArbazKiraak) Bug Bounty2017-08-302023-06-13
4992Stealing 0Auth Token (MITM) OAuth NA Arbaz Hussain (@ArbazKiraak) Bug Bounty2017-09-012023-06-13
4982Stored XSS] with arbitrary cookie installation XSS NA Arbaz Hussain (@ArbazKiraak) Bug Bounty2017-09-172023-06-13