Write-ups

Check The Published Writeups

WDBTitleTagsProgramsAuthorsTypePublicationAdded
5222Neglected DNS records exploited to takeover subdomains Subdomain takeover Heroku Yassine Aboukir (@Yassineaboukir) Bug Bounty2015-02-202023-06-13
5146Floating Domains – Taking Over 20K DigitalOcean Domains via a Lax Domain Import System Subdomain takeover DigitalOcean Matthew Bryant (@IAmMandatory) Bug Bounty2016-08-252023-06-13
5142Reading Uber’s Internal Emails [Uber Bug Bounty report worth $10,000] Subdomain takeover Uber Rojan Rijal (@uraniumhacker) Bug Bounty2016-09-052023-06-13
5139How I snooped into your private Slack messages [Slack Bug bounty worth $2,500] Subdomain takeover Slack Rojan Rijal (@uraniumhacker) Bug Bounty2016-09-132023-06-13
5120Authentication bypass on Ubiquity’s Single Sign-On via subdomain takeover Subdomain takeover Authentication bypass Ubiquity Networks Arne Swinnen (@ArneSwinnen) Bug Bounty2016-11-292023-06-13
5083Hundreds of hundreds sub-secdomains hack3d! (including Hacker0ne) Subdomain takeover HackerOne Ak1T4 (@akita_zen) Bug Bounty2017-03-282023-06-13
5051Authentication bypass on Uber’s Single Sign-On via subdomain takeover Subdomain takeover Authentication bypass Uber Arne Swinnen (@ArneSwinnen) Bug Bounty2017-06-252023-06-13
4963Subdomain Takeover Through Expired Cloudfront Distribution | live.lamborghini.co Subdomain takeover Lamborghini Muhammad Khizer Javed (@khizer_javed47) Bug Bounty2017-10-102023-06-13
4961Bugcrowd’s Domain & Subdomain Takeover vulnerability! Subdomain takeover Bugcrowd Muhammad Khizer Javed (@khizer_javed47) Bug Bounty2017-10-102023-06-13
4927UBER Wildcard Subdomain Takeover | BugBounty POC Subdomain takeover Uber Muhammad Khizer Javed (@khizer_javed47) Bug Bounty2017-11-202023-06-13
4783How I earned 60K+ from private program Open redirect Subdomain takeover XSS HTTP parameter pollution NA Siva Krishna Samireddi (@le4rner) Bug Bounty2018-04-252023-06-13
4774$4500 bounty - How I got lucky Subdomain takeover NA Eray Mitrani (@ErayMitrani) Bug Bounty2018-05-032023-06-13
4711Subdomain Takeover: Starbucks points to Azure Subdomain takeover Starbucks Patrik Hudak (@0xpatrik) Bug Bounty2018-06-252023-06-13
4665Shipt Subdomain TakeOver via HeroKu ( test.shipt.com ) Subdomain takeover Shipt Mohamed Haron (@m7mdharon) Bug Bounty2018-08-012023-06-13
4645Subdomain Takeover: Yet another Starbucks case Subdomain takeover Starbucks Patrik Hudak (@0xpatrik) Bug Bounty2018-08-092023-06-13
4593How to do 55.000+ Subdomain Takeover in a Blink of an Eye Subdomain takeover Shopify BuckHacker (@thebuckhacker) Bug Bounty2018-09-102023-06-13
4588Subdomain Takeover worth 200$ Subdomain takeover Netlify Ali Razzaq (@AliRazzaq_) Bug Bounty2018-09-142023-06-13
4569Subdomain Takeover via Unsecured S3 Bucket Connected to the Website Subdomain takeover NA Muhammad Khizer Javed (@khizer_javed47) Bug Bounty2018-09-242023-06-13
4558Subdomain Takeover via Shopify Vendor ( blog.exchangemarketplace.com ) with Steps Subdomain takeover Shopify Mohamed Haron (@m7mdharon) Bug Bounty2018-10-012023-06-13
4514Subdomain takeover dew to missconfigured project settings for Custom domain . Subdomain takeover Flock Prial Islam Khan (@prial261) Bug Bounty2018-10-252023-06-13
4486#bugbounty How I Takeover Microsoft Store. Subdomain takeover Microsoft Sadiq West Bug Bounty2018-11-082023-06-13
4435Taking over Google calendar of a company Subdomain takeover NA Daniel V. (@d4niel_v) Bug Bounty2018-12-042023-06-13
4422Microsoft Account Takeover Vulnerability Affecting 400 Million Users Subdomain takeover OAuth Meta / Facebook Aviva Zacks Bug Bounty2018-12-112023-06-13
4406Subdomain Takeover — New Level Subdomain takeover NA Valeriy Shevchenko (@Krevetk0Valeriy) Bug Bounty2018-12-172023-06-13
4303Souq.com Subdomain Takeover via jazzhr.com service Subdomain takeover Souq.com Mohamed Haron (@m7mdharon) Bug Bounty2019-02-152023-06-13