Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
4573Bypassing Firebase authorization to create custom goo.gl subdomains Logic flaw IDOR Google Thomas Orlita (@ThomasOrlita) Bug Bounty2018-09-212023-06-13
3689Exploiting Insecure Firebase Database! Insecure Firebase database Android NA Muhammad Khizer Javed (@khizer_javed47) Bug Bounty2020-02-042023-06-13
3208Firebase Cloud Messaging Service Takeover: A small research that led to 30k$+ in bounties Hardcoded API keys Information disclosure Google Abss (@absshax) Bug Bounty2020-08-172023-06-13
2636Lets Learn English - Hacking 10M+ Users AWS misconfiguration Insecure Firebase database OTP bypass Account takeover Logic flaw NA Aseem Shrey (@AseemShrey) Bug Bounty2021-04-172023-06-13
1912Write Up – Private Bug Bounty: Firebase Database Exposed By Misconfiguration – $2,000 USD Android Insecure Firebase database NA Omar Espino (@omespino) Bug Bounty2022-01-172023-06-13
1401Penetration Testing Firebase Web Applications Firebase Information disclosure NA Bhashit Pandya (@x30r_) Bug Bounty2022-07-032023-06-13
830Firebase: Insecure by Default (feat. that one time our classmates tried to sue us) Hardcoded API keys Fizz Aditya Saligrama (@saligrama_a) Bug Bounty2022-11-142023-06-13
785Dodging OAuth origin restrictions for Firebase spelunking OAuth Security misconfiguration Authentication flaw NA Aditya Saligrama (@saligrama_a) Bug Bounty2022-11-232023-06-13
767Firebase Exploit bug bounty Security misconfiguration Firebase NA Damaidec Bug Bounty2022-11-272023-06-13
107Testing a new encrypted messaging app%27s extraordinary claims Android Firebase Cryptographic issues Privacy issue Information disclosure Converso Crnković Bug Bounty2023-05-102023-06-13