Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
1507Abusing Facebook’s feature for a permanent account confusion(logic vulnerability) MFA bypass DoS Logic flaw Meta / Facebook Liv Bug Bounty2022-05-312023-06-13
1492Exploiting Amazon active vulnerability Payment bypass Logic flaw Amazon Benjamin Walter Bug Bounty2022-06-082023-06-13
1484How to download eBooks from Google Play Store without paying for them Payment bypass Logic flaw Google Yess (@Yess_2021xD) Bug Bounty2022-06-092023-06-13
1479Same bug different platform Logic flaw Authorization flaw Meta / Facebook Prajwol Dhungana (@PrajwolDhunga14) Bug Bounty2022-06-112023-06-13
1473How I was able to see likes and dislikes count which is hidden by victim | YouTube #1 Logic flaw Authorization flaw Google Jay Jani (@JayJani007) Bug Bounty2022-06-142023-06-13
1463[BugTales] UnZiploc: From 0-click To Platform Compromise Memory corruption Logic flaw RCE Local Privilege Escalation Huawei Daniel Komaromy (@kutyacica) Bug Bounty2022-06-142023-06-13
1458Proofpoint Discovers Potentially Dangerous Microsoft Office 365 Functionality that can Ransom Files Stored on SharePoint and OneDrive Logic flaw Microsoft Proofpoint (@proofpoint) Bug Bounty2022-06-162023-06-13
1452How I was able to see likes and dislikes count which is hidden by victim | YouTube #2 Logic flaw Authorization flaw Google Jay Jani (@JayJani007) Bug Bounty2022-06-172023-06-13
1432Moderation Filter Bypass in support.mozilla.org Logic flaw Mozilla tomorrowisnew (@tomorrowisnew_) Bug Bounty2022-06-252023-06-13
1415The Army Of The Headless Browsers DDoS Logic flaw Meta / Facebook Komodo Cyber Consulting (@Komodosec) Bug Bounty2022-06-292023-06-13
1408Facebook Portal’s business logic error lead to 500$ Logic flaw Authorization flaw Meta / Facebook unurbayar amarsaikhan (@0xunuruu) Bug Bounty2022-06-302023-06-13
1398Exposing Millions of Voter ID card users’ details. IDOR OTP bypass Account takeover Logic flaw CERT-In Aziz Al Aman (@nxtexploit) Bug Bounty2022-07-062023-06-13
1357Business logic error Logic flaw NA anjaneyulu kanakatla Bug Bounty2022-07-162023-06-13
1296Business logic vulnerabilities Logic flaw Payment tampering NA Sagar Sajeev (@Sagar__Sajeev) Bug Bounty2022-07-292023-06-13
1273Irremovable guest in facebook event — Facebook bug bounty Logic flaw Meta / Facebook Rajiv Gyawali (@rajiv_gyawali) Bug Bounty2022-08-062023-06-13
1255Email Confirmation bypass at Instagram Email verification bypass Logic flaw Meta / Facebook Avinash Kumar (@itsavinash_) Bug Bounty2022-08-102023-06-13
1194Blockchain Network is Secured! But not the apps and their Integrations Payment tampering Logic flaw NA Keyur Talati Bug Bounty2022-08-222023-06-13
1182Break the Logic: Insecure Parameters (€300) Parameter manipulation Logic flaw Mass assignment NA can1337 (@canmustdie) Bug Bounty2022-08-242023-06-13
1138Viewing Instagram live streams anonymously without notifying the host IDOR Logic flaw Privacy issue Meta / Facebook David Schütz (@xdavidhu) Bug Bounty2022-09-022023-06-13
1136Discovery of CVE-2022-35406 Logic flaw Referer leakage PortSwigger Mr. Vrushabh (@doshi_vrushabh) Bug Bounty2022-09-032023-06-13
1103How I was able to see likes count even though is hidden by victim | YouTube Information disclosure Logic flaw Google R ando (@Rando02355205) Bug Bounty2022-09-082023-06-13
1098Attackers Can Bypass GitHub Required Reviewers to Submit Malicious Code Authorization flaw Logic flaw GitHub Noam Dotan Bug Bounty2022-09-082023-06-13
986Vulnerabilities in Online Payment Systems Payment bypass Payment tampering Logic flaw NA Claudio Moran Bug Bounty2022-10-082023-06-13
928Bypassing Mimecast URL and File Inspection Secure Email Gateway bypass Logic flaw Mimecast Patrick Sayler (@psaYler) Bug Bounty2022-10-202023-06-13
888How i was able to get free money via sending negative tokens Logic flaw Payment tampering NA Mohamed Anani (@0xM5awy) Bug Bounty2022-10-282023-06-13