| 4163 | Tale of a Wormable Twitter XSS |
XSS |
Twitter |
Ahmed Elsobky |
Bug Bounty | 2019-05-02 | 2023-06-13 |
| 4156 | Stored XSS on Techprofile Microsoft |
Stored XSS |
Microsoft |
Mohammad Ali Syarief |
Bug Bounty | 2019-05-09 | 2023-06-13 |
| 4154 | Is MIME Sniffing XSS a real thing? [The story of weird Google bug bounties] |
Stored XSS
MIME sniffing |
Google |
Komodo Security |
Bug Bounty | 2019-05-15 | 2023-06-13 |
| 4152 | From parameter pollution to XSS |
HTTP parameter pollution
XSS |
NA |
Mo%27men Basel |
Bug Bounty | 2019-05-16 | 2023-06-13 |
| 4131 | Stored XSS on Edmodo |
Stored XSS |
Edmodo |
Rohit Verma (@rv0x00) |
Bug Bounty | 2019-05-28 | 2023-06-13 |
| 4130 | Exploiting File Uploads Pt. 1 – MIME Sniffing to Stored XSS #bugbounty |
Stored XSS
MIME sniffing |
NA |
HackerOn2Wheels (@HackerOn2Wheels) |
Bug Bounty | 2019-05-30 | 2023-06-13 |
| 4127 | Story of a uri based xss with some simple google dorking |
XSS |
NA |
Jatin Aesthetic (@techyfreakk) |
Bug Bounty | 2019-06-02 | 2023-06-13 |
| 4120 | Unicode vs WAF — XSS WAF Bypass |
XSS |
NA |
Prial Islam Khan (@prial261) |
Bug Bounty | 2019-06-05 | 2023-06-13 |
| 4118 | How I was able to get private ticket response panel and FortiGate web panel via blind XSS |
Blind XSS |
NA |
Bijan Murmu (@0xBijan) |
Bug Bounty | 2019-06-06 | 2023-06-13 |
| 4113 | Reflected XSS on Error Page |
Reflected XSS |
NA |
Tomi (@noobe_io) |
Bug Bounty | 2019-06-11 | 2023-06-13 |
| 4106 | XSSing Google Employees — Blind XSS on googleplex.com |
Blind XSS |
Google |
Thomas Orlita (@ThomasOrlita) |
Bug Bounty | 2019-06-15 | 2023-06-13 |
| 4098 | Bypassing XSS filter and Stealing User Payment Data |
XSS |
NA |
Osama Avvan (@osamaavvan) |
Bug Bounty | 2019-06-17 | 2023-06-13 |
| 4094 | Reflected XSS in Tokopedia Train Ticket |
Reflected XSS |
New Relic |
Jon Bottarini (@jon_bottarini) |
Bug Bounty | 2019-06-17 | 2023-06-13 |
| 4092 | XSS Filter Evasion |
XSS |
NA |
m0z (@LooseSecurity) |
Bug Bounty | 2019-06-17 | 2023-06-13 |
| 4089 | How a classical XSS can lead to persistent ATO Vulnerability? |
XSS
Account takeover |
NA |
Milind Purswani (@MilindPurswani) |
Bug Bounty | 2019-06-19 | 2023-06-13 |
| 4088 | A Fight For Duplicate Marked Bug: Story of BBC Hall Of Fame |
XSS |
BBC |
Wasim Shaikh (@Wa_sim_sim) |
Bug Bounty | 2019-06-20 | 2023-06-13 |
| 4087 | Self XSS To Evil XSS |
XSS |
NA |
Saad Ahmed (@XSaadAhmedX) |
Bug Bounty | 2019-06-20 | 2023-06-13 |
| 4082 | How I Hacked the Microsoft Outlook Android App and Found CVE-2019-1105 |
XSS |
Microsoft |
Bryan Appleby (@bryapp)< |
Bug Bounty | 2019-06-21 | 2023-06-13 |
| 4067 | Stored XSS on Indeed |
Stored XSS |
Indeed |
Tirtha Mandal (@tirtha_mandal) |
Bug Bounty | 2019-06-30 | 2023-06-13 |
| 4062 | Yeah! I got P2 in 1 minute - Stored XSS via Markdown Editor |
Stored XSS |
NA |
Schopath |
Bug Bounty | 2019-07-02 | 2023-06-13 |
| 4060 | Story of a stored xss to full account takeover vulnerability(N/A to accepted) |
Stored XSS |
NA |
Jatin Aesthetic (@techyfreakk) |
Bug Bounty | 2019-07-04 | 2023-06-13 |
| 4048 | XSS on Google Custom Search Engine |
XSS |
Google |
KL Sreeram (@kl_sree) |
Bug Bounty | 2019-07-11 | 2023-06-13 |
| 4044 | Cracking my windshield and earning $10,000 on the Tesla Bug Bounty Program |
Blind XSS |
Tesla |
Sam Curry (@samwcyo) |
Bug Bounty | 2019-07-14 | 2023-06-13 |
| 4037 | What do Netcat, SMTP and self XSS have in common? Stored XSS |
Stored XSS |
NA |
Plenum (@plenumlab) |
Bug Bounty | 2019-07-16 | 2023-06-13 |
| 4031 | Сookie-based XSS exploitation | $2300 Bug Bounty story |
XSS |
NA |
Max (@iSecMax) |
Bug Bounty | 2019-07-17 | 2023-06-13 |
