Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
4989IDOR on HackerOne Hacker Review “What Program Say” IDOR HackerOne Japz Divino (@japzdivino) Bug Bounty2017-09-022023-06-13
4526Security teams Internal attachments can be exported via "Export as .zip" feature on HackerOne Logic flaw HackerOne Japz Divino (@japzdivino) Bug Bounty2018-10-172023-06-13
4521Harvesting all private invites using leave program fast-tracked invitation and security@ email forwarding feature Logic flaw HackerOne Japz Divino (@japzdivino) Bug Bounty2018-10-222023-06-13
4502Bypass HackerOne 2FA requirement and reporter blacklist Logic flaw MFA bypass Authentication flaw HackerOne Japz Divino (@japzdivino) Bug Bounty2018-10-312023-06-13
4401Facebook BugBounty - Disclosing page members Information disclosure Meta / Facebook Nirmal Thapa / mpz (@tnirmalz) Bug Bounty2018-12-202023-06-13
2768Stealing user passwords through a VPN’s SSO Open redirect SSTI NA Alain Mowat (@plopz0r) Bug Bounty2021-02-252023-06-13
1133Simple IBM I (AS/400) Hacking Local Privilege Escalation Midrange system Menu security NA pz Bug Bounty2022-09-052023-06-13
1025Another Tale Of IBM I (AS/400) Hacking Local Privilege Escalation Midrange system Menu security NA pz Bug Bounty2022-09-282023-06-13
303Producing a POC for CVE-2022-42475 (Fortinet RCE) Memory corruption RCE Integer overflow Heap overflow Fortinet Alain Mowat (@plopz0r) Bug Bounty2023-03-142023-06-13