Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
872How I could have been the administrator for all Dutch companies and create invoices. And still can be… Logic flaw Dutch Government bob van der staak Bug Bounty2022-11-032023-06-13
860Exploit Feature To Get High Bug impact Logic flaw NA Mohamed Anani (@0xm5awy) Bug Bounty2022-11-052023-06-13
857How we hacked’ Telenet’s cybersecurity quiz Logic flaw Telenet Mickey De Baets Bug Bounty2022-11-072023-06-13
851My First Account Takeover Account takeover Logic flaw NA JAI NIRESH J Bug Bounty2022-11-092023-06-13
827Varonis Threat Labs Discovers SQLi and Access Flaws in Zendesk SQL injection Logic flaw Zendesk Tal Peleg Bug Bounty2022-11-152023-06-13
815MEGA’s Unlimited Cloud Storage Vulnerability Logic flaw Privilege escalation MEGA Nirmal Dahal (@TheNittam) Bug Bounty2022-11-172023-06-13
812How i found 8 vulnerabilities in 24h? Logic flaw NA Mohamed Anani (@0xM5awy) Bug Bounty2022-11-182023-06-13
807From Static domain to Account Takeover Account takeover Logic flaw NA Demon (@R29k_) Bug Bounty2022-11-182023-06-13
744Interesting find on the Invite link Logic flaw NA Sathvika Bug Bounty2022-12-022023-06-13
743[WRITE-UP] Irremovable comments on the FB Lite app | A story of a simple FB Lite bug that I found just by observation (Bounty: 500 USD) Logic flaw Meta / Facebook Shubham Bhamare (@theshubh77) Bug Bounty2022-12-022023-06-13
704How I became a millionaire in 3h | Fintech Bug Bounty — Part 1 IDOR Lack of rate limiting Logic flaw NA 0x4KD (@0x4kd) Bug Bounty2022-12-122023-06-13
683The Bug That Kept On Giving :: PaymentBypass :: Response Manipulation Payment bypass Logic flaw NA g30rgy th3 d4rk (@Crypt0g30rgy) Bug Bounty2022-12-162023-06-13
605Full Team Takeover Broken Access Control Logic flaw NA Tuhin Bose (@tuhin1729_) Bug Bounty2023-01-092023-06-13
601How I Earned $1000 From Business Logic Vulnerability (account takeover) Logic flaw Account takeover NA andika Bug Bounty2023-01-102023-06-13
582AWS CloudTrail vulnerability: Undocumented API allows CloudTrail bypass Cloud Logic flaw CloudTrail bypass AWS Nick Frichette (@frichette_n) Bug Bounty2023-01-172023-06-13
537Disclosing Facebook page admins by playing a game Logic flaw Information disclosure Meta / Facebook Sudip Shah Bug Bounty2023-01-282023-06-13
496I was able to see likes count even though it was hidden by the victim | YouTube App 16.15.35 Logic flaw Google (Youtube) R ando (@Rando02355205) Bug Bounty2023-02-052023-06-13
483Bypassing API Restrictions for Fun and Profit Payment bypass Logic flaw NA Arnav Tripathy Bug Bounty2023-02-072023-06-13
467We Hacked GitHub for a Month: Here’s What We Found Pre-account takeover Broken Access Control Email verification bypass Logic flaw GitHub Shivam Kumar Singh (@MrRajputHacker) Bug Bounty2023-02-112023-06-13
438The Inside Story of Finding a Reverse Transaction Vulnerability in a Financial Application Logic flaw Payment tampering NA Raja Uzair Abdullah (@UzaiRaja) Bug Bounty2023-02-162023-06-13
432[1500$ Worth — Slack] vulnerability, bypass invite accept process Broken Access Control Logic flaw Slack Sirat Sami (@siratsami71) Bug Bounty2023-02-202023-06-13
35330-Minute Heist: How I Bagged a $1500 Bounty in Just few Minutes! Broken Access Control Logic flaw NA Charlie : The Hacker Bug Bounty2023-03-042023-06-13
335Unauthorized access to Codespace secrets in GitHub Logic flaw Broken Access Control Account takeover GitHub Ophion Security (@OphionSecurity) Bug Bounty2023-03-072023-06-13
320Improper Authentication in Android App Logic flaw Authentication flaw HTTP response manipulation NA oXnoOneXo Bug Bounty2023-03-102023-06-13
293CHECKMATE Websockets Logic flaw Chess.com Oded Vaanunu Bug Bounty2023-03-162023-06-13