Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
1134Your Amiibo’s Haunted Memory corruption Buffer Overflow DoS Flipper Zero VVX7 (@VV_X_7) Bug Bounty2022-09-052023-06-13
1133Simple IBM I (AS/400) Hacking Local Privilege Escalation Midrange system Menu security NA pz Bug Bounty2022-09-052023-06-13
1132SSD Advisory – Linux CONFIG_WATCH_QUEUE LPE Memory corruption Race condition Local Privilege Escalation Ubuntu Linux Kernel Organization - Bug Bounty2022-09-052023-06-13
1131Hacking My Helium Crypto Miner Hardcoded credentials Missing authentication RCE Local Privilege Escalation Pycom Md. Asif Hossain (@0x0asif) Bug Bounty2022-09-052023-06-13
1130A Bug That Was 23 Years Old Or Not DoS Internet Bug Bounty (curl) Daniel Stenberg (@bagder) Bug Bounty2022-09-052023-06-13
1129IDOR “Insecure direct object references”, my first P1 in Bugbounty IDOR NA jedus0r Bug Bounty2022-09-052023-06-13
1128How to Decrypt Manage Engine PMP Passwords for Fun and Domain Admin - a Red Teaming Tale Cryptographic issues Zoho (ManageEngine) smaury (@smaury92) Bug Bounty2022-09-052023-06-13
1127CVE-2022-34715: More Microsoft Windows NFS V4 Remote Code Execution RCE Memory corruption Microsoft Quintin Crist Bug Bounty2022-09-062023-06-13
1126Bug Bounty { How I found an SSRF ( Reconnaissance ) } SSRF NA S Rahul (@7srambo) Bug Bounty2022-09-062023-06-13
1125CVE-2022-35405 Manage engines RCE (Password Manager Pro, PAM360 and Access Manager Plus) RCE Zoho Vinicius Pereira (@big0x75) Bug Bounty2022-09-082023-06-13
1124Turning cookie based XSS into account takeover XSS Account takeover Terrahost Bartłomiej Bergier (@_bergee_) Bug Bounty2022-09-062023-06-13
1123WordPress Core - Unauthenticated Blind SSRF SSRF WordPress Simon Scannell (@scannell_simon) Bug Bounty2022-09-062023-06-13
1122Exploiting Out-of-Band XXE in the Wild XXE SSRF NA Mahmoud Youssef (@0xmahmoudjo0) Bug Bounty2022-09-062023-06-13
1121How to turn security research into profit: a CL.0 case study HTTP request smuggling Desync attack NA James Kettle (@albinowax) Bug Bounty2022-09-082023-06-13
1120Quasar: Compromising Electron Apps Local Privilege Escalation Microsoft Taggart (@mttaggart) Bug Bounty2022-09-062023-06-13
1116Zuckerpunch - Abusing Self Hosted Github Runners at Facebook CI/CD Meta / Facebook Marcus Young Bug Bounty2022-09-062023-06-13
1115How I found Moodle Cross site scripting XSS Moodle ParagBagul Bug Bounty2022-09-072023-06-13
1114Groovy Template Engine Exploitation – Notes from a real case scenario RCE NA Gianluca Baldi (@0x_nope) Bug Bounty2022-09-072023-06-13
1113How I found 3 RXSS on the Lululemon bug bounty program XSS lululemon Omar Hashem (@OmarHashem666) Bug Bounty2022-09-072023-06-13
1112Exploiting Laravel based applications with leaked APP_KEYs and Queues RCE NA Timo Müller (@mtimo44) Bug Bounty2022-09-072023-06-13
1111$900 Blind XSS Blind XSS NA ѕнín (@shinchina_) Bug Bounty2022-09-072023-06-13
1110Groovy Template Engine Exploitation – Notes from a real case scenario RCE Code injection NA Gianluca Baldi (@0x_nope) Bug Bounty2022-09-072023-06-13
1109Step-by-Step Walkthrough of CVE-2022-32792 - WebKit B3ReduceStrength Out-of-Bounds Write Memory corruption Browser hacking Out-of-bounds Write Apple Daniel Lim (@daniellimws) Bug Bounty2022-09-082023-06-13
1108Binarly Finds Six High Severity Firmware Vulnerabilities In HP Enterprise Devices Memory corruption HP Binarly efiXplorer Team Bug Bounty2022-09-082023-06-13
1107Baxter SIGMA Spectrum Infusion Pumps: Multiple Vulnerabilities (FIXED) Hardcoded credentials Memory corruption MiTM Information disclosure Baxter Healthcare Deral Heiland (@Percent_X) Bug Bounty2022-09-082023-06-13