Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
1955Bug Hunting Journey of 2021 Stored XSS Open redirect Token leak CSRF Logic flaw Information disclosure IDOR Account takeover NA Sudhanshu Rajbhar (@sudhanshur705) Bug Bounty2021-12-312023-06-13
1952Abusing Business Logic of an Application to create backdoor in a form APP Logic flaw NA Snap Sec (@snap_sec) Bug Bounty2022-01-012023-06-13
1948Story of YouTube’s Unfixable Ads Bypass Logic flaw Google MrMax4o4 Bug Bounty2022-01-032023-06-13
1939Accessing GoDaddy internal instance through an email logic bug. Logic flaw Privilege escalation Account takeover GoDaddy Mostafa Mamdoh Bug Bounty2022-01-052023-06-13
1919FB Lite All Users Active Status Changed Logic flaw Meta / Facebook Neil Mark Ochea (@nmochea) Bug Bounty2022-01-142023-06-13
1891How I could have read your confidential bug reports by simple mail? Information disclosure Logic flaw Microsoft Sudhakar Muthumani (@Sudhakarmuthu04) Bug Bounty2022-01-252023-06-13
1864IDOR vulnerability on invoice and weak password reset leads to account take over IDOR Password reset Account takeover Payment tampering Logic flaw NA Damaidec Bug Bounty2022-02-012023-06-13
1842Google Security Misconfiguration Leads to Account Takeover ! Logic flaw Spoofing Google Harsh Banshpal Bug Bounty2022-02-082023-06-13
1815Bug Report; Bypassing Weekly Limits In Basic (Free) LinkedIn Account Logic flaw LinkedIn Ashok Acharya Bug Bounty2022-02-162023-06-13
1812My first report on HackerOne: A logic flaw in npm Logic flaw GitHub ElSec (@ElSec_) Bug Bounty2022-02-162023-06-13
1796Send a Email to me and get kicked out of Google Groups !! — #GoogleVRP — A Feature that almost broke Google Groups !! Logic flaw Authorization flaw Google Sriram Kesavan (@sriramoffcl) Bug Bounty2022-02-202023-06-13
1792How I could’ve bypassed the 2FA security of Instagram once again? MFA bypass Logic flaw Meta / Facebook Samip Aryal (@samiparyal_) Bug Bounty2022-02-212023-06-13
1787Stealing a few more GitHub Actions secrets Logic flaw GitHub Teddy Katz (@not_aardvark) Bug Bounty2022-02-232023-06-13
1783Bypassing default visibility for newly-added email in Facebook(Part I - Submitting I.D) Logic flaw Meta / Facebook Kent Jarold Abulag (@wkemenhehehegsg) Bug Bounty2022-02-252023-06-13
1782A Weird Price Tampering Vulnerability Payment tampering Logic flaw NA vFlexo (@vflexo) Bug Bounty2022-02-252023-06-13
1762Some critical vulnerabilities found with passive analysis on bug bounty programs explained Information disclosure Logic flaw NA Daniel V. (@d4niel_v) Bug Bounty2022-03-072023-06-13
1753Demographic Misconfiguration on Facebook live Logic flaw Authorization flaw Meta / Facebook Prajwol Dhungana (@PrajwolDhunga14) Bug Bounty2022-03-092023-06-13
1718Bypass confirmation to add payment method. Email verification bypass Logic flaw NA Yaj Desu Bug Bounty2022-03-182023-06-13
1671View Friends List of any users using “View as” | Facebook Bug bounty Logic flaw Broken Access Control Meta / Facebook Ph.Hitachi Bug Bounty2022-04-022023-06-13
1654The Bug That Kept On Giving :: PaymentBypass :: Eposed Return Url Payment bypass Logic flaw NA g30rgy th3 d4rk (@Crypt0g30rgy) Bug Bounty2022-04-052023-06-13
1599Unlock any blur text/picture without membership/subscription on Scribd.com |By Neuchi Payment bypass Logic flaw Scribd.com Neil Neuchi Bug Bounty2022-04-252023-06-13
1597Package Planting: Are You [Unknowingly] Maintaining Poisoned Packages? Logic flaw GitHub Yakir Kadkoda Bug Bounty2022-04-262023-06-13
1579Business Logic Errors - Art of Testing Cards Payment bypass Logic flaw NA Jerry Shah (@Jerry) Bug Bounty2022-05-042023-06-13
1547Vulnerability in Huawei%27s AppGallery can download paid apps for free Payment bypass Logic flaw Huawei Dylan Roussel (@evowizz) Bug Bounty2022-05-182023-06-13
1533A business Logic issue worth $1500 Logic flaw NA Mohsin Khan (@tabaahi_) Bug Bounty2022-05-212023-06-13