Writeups
Spotlight
Add Your Writeup
Blogs
Contact Us
Register
Login
Write-ups
Check The Published Writeups
Search
Reset
WDB
Title
Tags
Programs
Authors
Type
Publication
Added
5103
Lightweight markup: a trio of persistent XSS in GitLab
Stored XSS
GitLab
Yasin Soliman (@SecurityYasin)
Bug Bounty
2017-02-15
2023-06-13
5101
From RSS to XXE: feed parsing on Hootsuite
XSS
XXE
Hootsuite
Yasin Soliman (@SecurityYasin)
Bug Bounty
2017-02-17
2023-06-13
5074
A pair of Plotly bugs: Stored XSS and AWS Metadata SSRF
Stored XSS
SSRF
Plotly
Yasin Soliman (@SecurityYasin)
Bug Bounty
2017-05-25
2023-06-13
5050
Road to (unauthenticated) recovery: downloading GitHub SSO bypass codes
Authorization flaw
GitHub
Yasin Soliman (@SecurityYasin)
Bug Bounty
2017-06-25
2023-06-13
5042
Managed Apps and Music: a tale of two XSSes in Google Play
XSS
Google
Yasin Soliman (@SecurityYasin)
Bug Bounty
2017-07-07
2023-06-13
4949
App Maker and Colaboratory: a stored Google XSS double-bill
Stored XSS
Google
Yasin Soliman (@SecurityYasin)
Bug Bounty
2017-11-01
2023-06-13
4926
Taking note: XSS to RCE in the Simplenote Electron client
XSS
RCE
Automattic
Yasin Soliman (@SecurityYasin)
Bug Bounty
2017-11-22
2023-06-13
