Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
5095Time-based Blind SQLi on news.starbucks.com Blind SQL injection Starbucks toctou Bug Bounty2017-02-262023-06-13
793SSRF via DNS Rebinding (CVE-2022–4096) SSRF DNS rebinding TOCTOU Appsmith Basavaraj Banakar (@basu_banakar) Bug Bounty2022-11-222023-06-13
180Breaking Docker Named Pipes SYSTEMatically: Docker Desktop Privilege Escalation – Part 2 Local Privilege Escalation TOCTOU Arbitrary file write Docker Eviatar Gerzi Bug Bounty2023-04-192023-06-13
150Avast Anti-Virus privileged arbitrary file create on virus quarantine (CVE-2023-1585 and CVE-2023-1587) TOCTOU NULL pointer dereference Arbitrary file write Local Privilege Escalation Avast Denis Skvortcov (@Denis_Skvortcov) Bug Bounty2023-04-262023-06-13
111Escaping Parallels Desktop with Plist Injection Local Privilege Escalation Plist injection TOCTOU Parallels kn32 Bug Bounty2023-05-082023-06-13
90Avast Anti-Virus privileged arbitrary file create on virus restore (CVE-2023-1586) TOCTOU Arbitrary file write Local Privilege Escalation Avast NortonLifeLock Denis Skvortcov (@Denis_Skvortcov) Bug Bounty2023-05-152023-06-13