Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
5170InstaBrute: Two Ways to Brute-force Instagram Account Credentials Bruteforce Username enumeration Meta / Facebook Arne Swinnen (@ArneSwinnen) Bug Bounty2016-05-192023-06-13
5163Uber Hacking: How we found out who you are, where you are and where you went Bruteforce Information disclosure Logic flaw IDOR Uber Vitor “r0t” Oliveira (@r0t1v) Bug Bounty2016-06-242023-06-13
5100How I was able to remove your Instagram Phone number Bruteforce Meta / Facebook Neeraj Sonaniya (@neeraj_sonaniya) Bug Bounty2017-02-202023-06-13
4998Bypassing Rate Limit Protection by spoofing originating IP Bruteforce NA Arbaz Hussain (@ArbazKiraak) Bug Bounty2017-08-302023-06-13
4966How I could have mass uploaded from every Flickr account! Bruteforce Flickr Jazzy (@ret2got) Bug Bounty2017-10-052023-06-13
4887Internshala Bug in Internshala Student Partner Bruteforce Internshala Circle Ninja (@circleninja) Bug Bounty2018-01-202023-06-13
4864I figured out a way to hack any of Facebook’s 2 billion accounts, and they paid me a $15,000 bounty for it Bruteforce Account takeover Meta / Facebook Anand Prakash (@anandpraka_sh) Bug Bounty2018-02-092023-06-13
4721[Responsible disclosure] How I could have booked movie tickets through other user accounts Password reset Account takeover Bruteforce OTP bypass AGS Cinemas Bharathvaj Ganesan Bug Bounty2018-06-182023-06-13
4693Attacking PostgreSQL Database Bruteforce Weak credentials NA Vishnuraj Bug Bounty2018-07-162023-06-13
4606Simple Login Brute Force / Current Password Requirement Bypass IDOR Account takeover Bruteforce NA Mandeep Jadon (@1337tr0lls) Bug Bounty2018-09-072023-06-13
4549GoogleMeetRoulette: Joining random meetings Bruteforce Logic flaw Google Martin Vigo (@martin_vigo) Bug Bounty2018-10-042023-06-13
4425Token Brute-Force to Account Take-over to Privilege Escalation to Organization Take-Over Account takeover Privilege escalation Bruteforce NA Plenum (@plenumlab) Bug Bounty2018-12-102023-06-13
4333Protonmail XSS — Stored Stored XSS Bruteforce ProtonMail Chand Singh (@Chand_42) Bug Bounty2019-01-292023-06-13
4268Fixed : Brute-force Instagram account’s passwords Bruteforce Rate limiting bypass Meta / Facebook Sameer Rao Bug Bounty2019-03-052023-06-13
4257Brute Forcing User IDS via CSRF To Delete all Users with CSRF attack. CSRF Bruteforce NA Armaan Pathan (@armaancrockroax) Bug Bounty2019-03-122023-06-13
4213How I got a trip to amsterdam through bug bounty Bruteforce NA Ninad Mathpati (@ninad_mathpati) Bug Bounty2019-04-072023-06-13
4133How did I bypass a Custom Brute Force protection and why that solution is not a good idea? Bruteforce Authentication flaw NA dortz Bug Bounty2019-05-252023-06-13
3816Disable Any Unconfirmed Account in Facebook Bruteforce Meta / Facebook Lokesh Kumar (@lokeshdlk77) Bug Bounty2019-11-212023-06-13
3675IDOR leads to Data leakage and Profile Update IDOR Bruteforce NA vict0ni (@vict0ni) Bug Bounty2020-02-072023-06-13
3610How I got access to critical data of a Company in no time ? Information disclosure Lack of rate limiting Bruteforce NA Kaustubh Kale Bug Bounty2020-03-122023-06-13
3577OTP Bruteforce- Account Takeover OTP bruteforce Account takeover NA Ranjit Kumar Bug Bounty2020-03-292023-06-13
3551Hacking a Telecommunication company(MTN) OTP bypass Bruteforce MTN Group Afolic Bug Bounty2020-04-132023-06-13
3398Account Takeover via OTP Bruteforce (Apigee API) OTP bypass Bruteforce Lack of rate limiting NA Vishnuraj Bug Bounty2020-06-132023-06-13
3385How I managed to Escalate privilege as admin Lack of rate limiting Bruteforce Weak credentials NA Abisheik Magesh (@AbisheikMagesh) Bug Bounty2020-06-162023-06-13
3375Bypass 2FA like a Boss Lack of rate limiting Bruteforce NA Seqrity (@seQrity) Bug Bounty2020-06-202023-06-13