Writeups
Spotlight
Add Your Writeup
Blogs
Contact Us
Register
Login
Write-ups
Check The Published Writeups
Search
Reset
WDB
Title
Tags
Programs
Authors
Type
Publication
Added
3049
How i could take over any Account on a USA Department of Defense Website due to a simple IDOR
IDOR
Account takeover
U.S. Dept Of Defense
Gal Nagli (@naglinagli)
Bug Bounty
2020-11-07
2023-06-13
2958
Broken Access Control on samsung.com subdomain leads to Mass Account Takeover of Samsung employees application accounts
Information disclosure
Account takeover
Authorization flaw
Samsung
Gal Nagli (@naglinagli)
Bug Bounty
2020-12-18
2023-06-13
2769
Poisoning your Cache for 1000$ - Approach to Exploitation Walkthrough
Web cache poisoning
Stored XSS
NA
Gal Nagli (@naglinagli)
Bug Bounty
2021-02-25
2023-06-13
2557
Mass Assignment exploitation in the wild - Escalating privileges in style
Mass assignment
Privilege escalation
NA
Gal Nagli (@naglinagli)
Bug Bounty
2021-05-14
2023-06-13
334
Subdomain Takeover: How a Misconfigured DNS Record Could Lead to a Huge Supply Chain Attack
Subdomain takeover
Supply chain attack
GitHub
Gal Nagli (@naglinagli)
Bug Bounty
2023-03-08
2023-06-13