Write-ups
Check The Published Writeups
| WDB | Title | Tags | Programs | Authors | Type | Publication | Added |
|---|---|---|---|---|---|---|---|
| 4505 | IDOR in JWT and the shortest token you will ever see {}.{“uid”: “1234567890”} | IDOR | NA | Plenum (@plenumlab) | Bug Bounty | 2018-10-30 | 2023-06-13 |
| 4493 | Duplicate but still cool | IDOR Account takeover | NA | Plenum (@plenumlab) | Bug Bounty | 2018-11-05 | 2023-06-13 |
| 4425 | Token Brute-Force to Account Take-over to Privilege Escalation to Organization Take-Over | Account takeover Privilege escalation Bruteforce | NA | Plenum (@plenumlab) | Bug Bounty | 2018-12-10 | 2023-06-13 |
| 4115 | Account takeover using IDOR and the misleading case of error 403. | IDOR | NA | Plenum (@plenumlab) | Bug Bounty | 2019-06-11 | 2023-06-13 |
| 4037 | What do Netcat, SMTP and self XSS have in common? Stored XSS | Stored XSS | NA | Plenum (@plenumlab) | Bug Bounty | 2019-07-16 | 2023-06-13 |