Write-ups
Check The Published Writeups
| WDB | Title | Tags | Programs | Authors | Type | Publication | Added |
|---|---|---|---|---|---|---|---|
| 5005 | Reflected XSS on www.yahoo.com | Reflected XSS | Yahoo! / Verizon Media | Samuel (@saamux) | Bug Bounty | 2017-08-12 | 2023-06-13 |
| 4969 | Filter Bypass to Reflected XSS on https://finance.yahoo.com (mobile version) | Reflected XSS | Yahoo! / Verizon Media | Samuel (@saamux) | Bug Bounty | 2017-09-24 | 2023-06-13 |
| 4880 | Full Account Takeover through CORS with connection Sockets | CORS misconfiguration Account takeover | NA | Samuel (@saamux) | Bug Bounty | 2018-01-25 | 2023-06-13 |
| 4800 | Spoof an user to create a description of a group in Flickr | IDOR | Flickr | Samuel (@saamux) | Bug Bounty | 2018-04-16 | 2023-06-13 |
| 4555 | Applying a small bypass to steal Facebook Session tokens in Uber | XSS CSP bypass OAuth | Uber | Samuel (@saamux) | Bug Bounty | 2018-10-02 | 2023-06-13 |