Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
2619Remote code execution in Homebrew by compromising the official Cask repository RCE Homebrew RyotaK (@ryotkak) Bug Bounty2021-04-212023-06-13
2611RCE via Internal Access to Adminer Database Management (Critical) RCE NA Ahmad Halabi (@Ahmad_Halabi_) Bug Bounty2021-04-242023-06-13
2605CVE-2021-22204 - Recreating a critical bug in ExifTool, no Perl smarts required. RCE Exiftool - Bug Bounty2021-04-262023-06-13
2603WordPress 5.7 XXE Vulnerability XXE WordPress Sonar (@SonarSource) Bug Bounty2021-04-272023-06-13
2596PHP Supply Chain Attack on Composer Argument injection RCE Supply chain attack Security code review Packagist Thomas Chauchefoin (@swapgs) Bug Bounty2021-04-292023-06-13
2591Password reset code brute-force vulnerability in AWS Cognito Password reset Bruteforce Rate limiting bypass Account takeover AWS Pentagrid (@pentagridsec) Bug Bounty2021-04-302023-06-13
2589How I found my first RCE? RCE NA ipanda (@ipanda915) Bug Bounty2021-05-012023-06-13
2586Basic recon to RCE Insecure deserialization RCE NA Joshua Martinelle (@J0_mart) Bug Bounty2021-05-022023-06-13
2584Finding known exploits for bugbounties. RCE NA ipanda (@ipanda915) Bug Bounty2021-05-032023-06-13
2583Deep Dive into Open Source Bug Bounty CSRF NA Ritik Sahni (@ritiksahni22) Bug Bounty2021-05-032023-06-13
2582Exploiting the Source Engine (Part 2) - Full-Chain Client RCE in Source using Frida RCE Valve Geebz (@Gbps111) Bug Bounty2021-05-042023-06-13
2581ExifTool CVE-2021-22204 - Arbitrary Code Execution RCE GitLab William Bowling / vakzz (@wcbowling) Bug Bounty2021-05-042023-06-13
2575How I Hacked Google App Engine: Anatomy of a Java Bytecode Exploit RCE Google - Bug Bounty2021-05-052023-06-13
2569Unauthorized access to Django Admin Dashboard by endpoint leaked on GitHub Missing authentication Forced browsing NA Santosh Kumar Sha (@killmongar1996) Bug Bounty2021-05-102023-06-13
2560Counter-Strike Global Offsets: reliable remote code execution RCE Valve brymko (@brymko) Bug Bounty2021-05-132023-06-13
25562FA Bypass via Forced Browsing MFA bypass NA Akhil Bug Bounty2021-05-152023-06-13
2548Just Gopher It: Escalating a Blind SSRF to RCE for $15k SSRF RCE NA SirLeeroyJenkins (@SirLeeroyJenkin) Bug Bounty2021-05-172023-06-13
253713 Nagios Vulnerabilities, #7 will SHOCK you! RCE Local Privilege Escalation XSS Security code review Nagios Samir Ghanem (@sam0x21r) Bug Bounty2021-05-202023-06-13
2536403 Forbidden Bypass 403 bypass Forced browsing NA th3.d1p4k (@DipakPanchal05) Bug Bounty2021-05-212023-06-13
2518Account Takeover via iFrame Injection Iframe injection Account takeover NA xbforce (@xbforce) Bug Bounty2021-05-292023-06-13
2508Exploiting Open Redirect - Whitelist Bypass Using Salesforce Environment Open redirect Token theft Salesforce NA Gaurav Nayak (@4auvar) Bug Bounty2021-06-022023-06-13
2504Android: Exploring vulnerabilities in WebResourceResponse Arbitrary file read Android Amazon Oversecured (@OversecuredInc) Bug Bounty2021-06-032023-06-13
2495Joomla Password Reset Vulnerability And A Stored XSS For Full Compromise Password reset Stored XSS Privilege escalation RCE Security code review NA Adrian Tiron (@Adrian__T) Bug Bounty2021-06-072023-06-13
2482Blind Command Injection - It hurts Command injection RCE NA Jerry Shah (@Jerry) Bug Bounty2021-06-142023-06-13
2476Authentication Bypass | Easy P1 in 10 minutes Authentication bypass Forced browsing NA Anirudh Makkar (@anirudhmakkar) Bug Bounty2021-06-162023-06-13