Write-ups
Check The Published Writeups
| WDB | Title | Tags | Programs | Authors | Type | Publication | Added |
|---|---|---|---|---|---|---|---|
| 5094 | Hacking Slack using postMessage and WebSocket-reconnect to steal your precious token | postMessage Violation of secure design principles | Slack | Frans Rosén (@fransrosen) | Bug Bounty | 2017-02-28 | 2023-06-13 |
| 2226 | Hacking CloudKit - How I accidentally deleted your Apple Shortcuts | Logic flaw | Apple | Frans Rosén (@fransrosen) | Bug Bounty | 2021-09-13 | 2023-06-13 |
| 1604 | Security issues with cloudflare/odoh-server-go and the ODoH RFC draft | SSRF | Cloudflare | Frans Rosén (@fransrosen) | Bug Bounty | 2022-04-21 | 2023-06-13 |
| 1395 | Account hijacking using "dirty dancing" in sign-in OAuth-flows | OAuth Account takeover | NA | Frans Rosén (@fransrosen) | Bug Bounty | 2022-07-07 | 2023-06-13 |