Write-ups
Check The Published Writeups
WDB | Title | Tags | Programs | Authors | Type | Publication | Added |
---|---|---|---|---|---|---|---|
3020 | OpenEMR 5.0.1.3 Arbitrary File Actions | Arbitrary file write Arbitrary file read Security code review | OpenEMR | Josh Fam (@Pullerze) | Bug Bounty | 2020-11-17 | 2023-06-13 |
2840 | How I was able to Turn a XSS into a Account Takeover | Web cache poisoning Stored XSS Account takeover OAuth Logic flaw | NA | Josh Fam (@Pullerze) | Bug Bounty | 2021-02-03 | 2023-06-13 |
2775 | Web Cache Poisoning to Account Takeover | Web cache poisoning Account takeover | NA | Josh Fam (@Pullerze) | Bug Bounty | 2021-02-21 | 2023-06-13 |
455 | Bypassing CORS configurations to produce an Account Takeover for Fun and Profit | CORS misconfiguration Account takeover | NA | Josh Fam (@Pullerze) | Bug Bounty | 2023-02-13 | 2023-06-13 |