Write-ups
Check The Published Writeups
| WDB | Title | Tags | Programs | Authors | Type | Publication | Added |
|---|---|---|---|---|---|---|---|
| 400 | Microsoft Azure Account Takeover via DOM-based XSS in Cosmos DB Explorer | Account takeover DOM XSS | Microsoft (Azure) | Ngo Wei Lin (@Creastery) | Bug Bounty | 2023-02-24 | 2023-06-13 |
| 359 | CS-Cart PDF Plugin Unauthenticated Command Injection | RCE OS command injection Security code review | CS-Cart | Ngo Wei Lin (@Creastery) | Bug Bounty | 2023-03-03 | 2023-06-13 |
| 192 | (CVE-2023-2017) Shopware 6 Server-side Template Injection (SSTI) via Twig Security Extension | SSTI RCE Security code review | Shopware | Ngo Wei Lin (@Creastery) | Bug Bounty | 2023-04-17 | 2023-06-13 |