Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
1840SQL Injection, Reflected XSS and Information Disclosure in one subdomain in just 10 minutes SQL injection XSS Information disclosure NA Mahmoud Hamed (@7odamo_) Bug Bounty2022-02-082023-06-13
1835Story of critical security flaws I found in Glints IDOR Information disclosure Glints huli (@aszx87410) Bug Bounty2022-02-092023-06-13
1814Hacked Dutch Government Website. All I got was this l̶o̶u̶s̶y̶ cool T-Shirt. Information disclosure Dutch Government Romesh chander Bug Bounty2022-02-162023-06-13
1803How I get my first SWAG from SIDN (Sensitive Data Exposer) Directory listing Information disclosure 403 bypass SIDN remonsec (@remonsec) Bug Bounty2022-02-192023-06-13
1773Skype extension: All functionality broken? Still exploitable! Information disclosure Privacy issue Microsoft Wladimir Palant (@WPalant) Bug Bounty2022-03-012023-06-13
1772[ Directory Traversal attack ] How did I find it using GitHub Information disclosure Path traversal NA Fenrir (@leetibrahim) Bug Bounty2022-03-022023-06-13
1762Some critical vulnerabilities found with passive analysis on bug bounty programs explained Information disclosure Logic flaw NA Daniel V. (@d4niel_v) Bug Bounty2022-03-072023-06-13
1745I have Found Microsoft Subdomain Website database list, database username, password Information disclosure Microsoft Bot Ami (@Botami143) Bug Bounty2022-03-112023-06-13
1726SSD Advisory – Exchange Server GetWacInfo Information Disclosure Vulnerability XXE Information disclosure Microsoft Alex Birnberg (@alexbirnberg) Bug Bounty2022-03-152023-06-13
1712Bug Bounty catches part -1 Authentication bypass Information disclosure Broken Access Control NA Bijan Murmu (@0xBijan) Bug Bounty2022-03-202023-06-13
1707Google Maps API Key Unauthorized Use Case Information disclosure NA Dan Barros Bug Bounty2022-03-222023-06-13
1706Story about more than 3.5 million PII leakage in Yahoo!!! IDOR Information disclosure iOS Yahoo! / Verizon Media dhakal_bibek (@dhakal__bibek) Bug Bounty2022-03-222023-06-13
1704Authentication bypass using root array Authentication bypass Information disclosure NA Eslam Akl (@eslam3kll) Bug Bounty2022-03-222023-06-13
1685CVE-2022-22948: Sensitive Information Disclosure in VMware vCenter Information disclosure VMware Yuval Lazar Bug Bounty2022-03-292023-06-13
1658Azure Active Directory Exposes Internal Information Information disclosure Microsoft Secureworks Counter Threat Unit (@Secureworks) Bug Bounty2022-04-052023-06-13
1656New npm Flaws Let Attackers Better Target Packages for Account Takeover Information disclosure GitHub Yakir Kadkoda Bug Bounty2022-04-052023-06-13
1653Azure Active Directory Exposes Internal Information Cloud Information disclosure Azure AD Microsoft (Azure) Counter Threat Unit Research Team Bug Bounty2022-04-052023-06-13
1650How i got access to 1600k Users PII Data $$$$ Information disclosure NA Gokul AP (@CodingGokul) Bug Bounty2022-04-062023-06-13
1638NotGitBleed Information disclosure GitHub Aaron Devaney Bug Bounty2022-04-112023-06-13
1628MY First Bug In Hackerone Information disclosure NA anjaneyulu kanakatla Bug Bounty2022-04-142023-06-13
1624United Nations bug bounty[writeup] Information disclosure United Nations Debprasad Banerjee Bug Bounty2022-04-142023-06-13
1616XSLeaking with my best bud SOP Information disclosure Microsoft Ha Anh Hoang Bug Bounty2022-04-152023-06-13
1607Gaining Unlimited access to graph AuditLogs endpoint using complex filters with non-privileged user account Information disclosure Privilege escalation Microsoft Joosua Santasalo (@SantasaloJoosua) Bug Bounty2022-04-212023-06-13
1603Adventures Into The MeowCorp Bug Bounty Program Information disclosure Weak credentials SSRF .git folder disclosure RCE NA Nirmal Thapa (@tnirmalz) Bug Bounty2022-04-212023-06-13
1598Fuzzing and credentials leakage..awesome bug hunting writeup Hardcoded credentials Information disclosure NA Abdalrahman Alshammas Bug Bounty2022-04-252023-06-13