Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
5273Multiple Open URL Redirection Vulnerability on Facebook worth $1500 Open redirect Meta / Facebook Arul Kumar (@ArulVaiyapuri) Bug Bounty2022-08-052023-06-13
5272Delete any Photo from Facebook by Exploiting Support Dashboard - $12,500 Bug IDOR Meta / Facebook Arul Kumar (@ArulVaiyapuri) Bug Bounty2013-09-012023-06-13
5190Command injection which got me "6000$" from #Google OS command injection Google Venkatesh Sivakumar (@pranavvenkats) Bug Bounty2016-03-152023-06-13
5117IDOR in Facebook%27s Acquisition (Parse) IDOR Meta / Facebook Venkatesh Sivakumar (@pranavvenkats) Bug Bounty2016-12-112023-06-13
4567[XSS] survey.dropbox.com XSS Dropbox Kumar Bug Bounty2018-09-252023-06-13
4553Facebook Bug Bounty: Email Id, Phone Number Can be exposed Through Business Manager Logic flaw Information disclosure Meta / Facebook Rohit kumar (@rohitcoder) Bug Bounty2018-10-032023-06-13
4522A possibility of Account Takeover in Medium Account takeover Logic flaw Medium Prashant Kumar (@notsoshant) Bug Bounty2018-10-202023-06-13
4487Object name Exposure — ING Bank Responsible Disclosure Program Information disclosure ING Bank Rohit kumar (@rohitcoder) Bug Bounty2018-11-082023-06-13
4475Facebook Vulnerability: Hiding from the view of Business Admin in the Business Manager Logic flaw Authorization flaw Meta / Facebook Ritish Kumar Singh Bug Bounty2018-11-152023-06-13
4390How I Was Able To Takeover All User Account And Admin Panel IDOR Account takeover NA Dipak kumar Das (@d1pakdas) Bug Bounty2018-12-282023-06-13
4363Facebook Vulnerability: Unremovable facebook group admin Logic flaw Meta / Facebook Ritish Kumar Singh Bug Bounty2019-01-152023-06-13
4336A short tale of Account verification bypass Email verification bypass Authorization flaw NA Satyendra Kumar Bug Bounty2019-01-272023-06-13
4298Facebook/Workplace Bug Exposed Offsite Employee Events, Sensitive emails Putting Employees at Risk Information disclosure Meta / Facebook Rohit kumar (@rohitcoder) Bug Bounty2019-02-162023-06-13
4295Stored XSS on Edmodo Stored XSS Edmodo Rohit kumar (@rohitcoder) Bug Bounty2019-02-182023-06-13
4250User Account Takeover [Password Change]— Nice Catch! Account takeover Password reset NA Rohit kumar (@rohitcoder) Bug Bounty2019-03-142023-06-13
4246Disclosure of Pending Roles for any Facebook Page IDOR Meta / Facebook Avinash Kumar (@itsavinash_) Bug Bounty2019-03-162023-06-13
4224Facebook Vulnerability: Hiding from Facebook Page Admin(s) in /hacked workflow Logic flaw Meta / Facebook Ritish Kumar Singh Bug Bounty2019-04-022023-06-13
4114Facebook Vulnerability: Non-unfriendable user in /hacked workflow Logic flaw Meta / Facebook Ritish Kumar Singh Bug Bounty2019-06-112023-06-13
4093Business user Employees could have applied block list to all ad accounts listed in the business manager. Authorization flaw Logic flaw Meta / Facebook Rohit kumar (@rohitcoder) Bug Bounty2019-06-172023-06-13
4090Facebook Vulnerability: Unremovable Co-Host in facebook group events Logic flaw Meta / Facebook Ritish Kumar Singh Bug Bounty2019-06-192023-06-13
4058Facebook Vulnerability: Unremovable Co-Host in facebook page events Logic flaw DoS Meta / Facebook Ritish Kumar Singh Bug Bounty2019-07-042023-06-13
4035CSRF Email Confirmation Vulnerability for Gmail & G-Suite in Facebook CSRF Meta / Facebook Lokesh Kumar (@lokeshdlk77) Bug Bounty2019-07-162023-06-13
3971ByPassing fix of Domain Blocking feature in Business Manager Authorization flaw Logic flaw Meta / Facebook Rohit kumar (@rohitcoder) Bug Bounty2019-08-152023-06-13
3957From Github Recon To Account Takeover Information disclosure Account takeover NA Dipak kumar Das (@d1pakdas) Bug Bounty2019-08-242023-06-13
3934Oculus identity verification bypass through brute-force OTP bypass Lack of rate limiting Meta / Facebook karthik kumar reddy (@karthiksunny007) Bug Bounty2019-09-092023-06-13