Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
3049How i could take over any Account on a USA Department of Defense Website due to a simple IDOR IDOR Account takeover U.S. Dept Of Defense Gal Nagli (@naglinagli) Bug Bounty2020-11-072023-06-13
2958Broken Access Control on samsung.com subdomain leads to Mass Account Takeover of Samsung employees application accounts Information disclosure Account takeover Authorization flaw Samsung Gal Nagli (@naglinagli) Bug Bounty2020-12-182023-06-13
2769Poisoning your Cache for 1000$ - Approach to Exploitation Walkthrough Web cache poisoning Stored XSS NA Gal Nagli (@naglinagli) Bug Bounty2021-02-252023-06-13
2557Mass Assignment exploitation in the wild - Escalating privileges in style Mass assignment Privilege escalation NA Gal Nagli (@naglinagli) Bug Bounty2021-05-142023-06-13
334Subdomain Takeover: How a Misconfigured DNS Record Could Lead to a Huge Supply Chain Attack Subdomain takeover Supply chain attack GitHub Gal Nagli (@naglinagli) Bug Bounty2023-03-082023-06-13