Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
3752Effortlessly finding Cross Site Script Inclusion (XSSI) & JSONP for bug bounty XSSI NA Omkar Bhagwat (@th3_hidd3n_mist) Bug Bounty2019-12-272023-06-13
3751Drop the mic?! no! Drop the connection ;) DOM XSS Google Sasi Levi (@sasi2103) Bug Bounty2019-12-292023-06-13
3748How did I earn $3133.70 from Google Translator? XSS Google Beri Bey (@uppmen) Bug Bounty2019-12-302023-06-13
3747Exploiting a Self Stored XSS with an IDOR Self-XSS Stored XSS IDOR NA Shuaib Oladigbolu (@_sawzeeyy) Bug Bounty2019-12-312023-06-13
3746Bug Hunting Journey of 2019 XSS Privilege escalation Information disclosure Alibaba Yahoo! / Verizon Media Sudhanshu Rajbhar (@sudhanshur705) Bug Bounty2019-12-312023-06-13
3736XSS on Sony subdomain Reflected XSS Sony Gökhan Güzelkokar (@gkhck_) Bug Bounty2020-01-062023-06-13
3731The Bug That Exposed Your PayPal Password XSSI Paypal Alex Birsan (@alxbrsn) Bug Bounty2020-01-082023-06-13
3701Escalating reflected XSS with HTTP Smuggling Reflected XSS HTTP request smuggling NA Hazana (@HazanaSec) Bug Bounty2020-01-272023-06-13
3692Tumblr Bug Bounty ( $200) Unrestricted file upload XSS Authorization flaw Automattic Myo Min Thu (@myominthu1337) Bug Bounty2020-02-022023-06-13
3687Critical Security Flaw Found in WhatsApp Desktop Platform Allowing Cybercriminals Read From The File System Access Stored XSS CSP bypass Open redirect RCE Meta / Facebook Gal Weizman (@WeizmanGal) Bug Bounty2020-02-042023-06-13
3686Arbitary File Upload too Stored XSS - Bug Bounty Arbitrary file upload Stored XSS NA m0chan (@m0chan98) Bug Bounty2020-02-042023-06-13
3677Popping Alerts in Mixmax Chrome Extension (Write Up) XSS Mixmax Evan Ricafort (@evanricafort) Bug Bounty2020-02-062023-06-13
3668CVE-2019-18426 - WhatsApp Vulnerabilities Disclosure - Open Redirect + CSP Bypass + Persistent XSS + FS read permissions + potential for RCE RCE Stored XSS CSP bypass Arbitrary file read Open redirect Security code review Meta / Facebook (WhatsApp) Gal Weizman (@WeizmanGal) Bug Bounty2020-02-142023-06-13
3662Exploiting WebSocket [Application Wide XSS / CSRF] XSS CSRF NA Osama Avvan (@osamaavvan) Bug Bounty2020-02-172023-06-13
3660How We Found Another XSS in Google with Acunetix XSS Google Andrey Leonov (@4lemon) Bug Bounty2020-02-172023-06-13
3659My First Bounty From Google. Self-XSS HTML injection Google Syahri Ramadan (@adonkidz7) Bug Bounty2020-02-182023-06-13
3652Reflected XSS In AT&T Reflected XSS AT&T Myo Min Thu (@myominthu1337) Bug Bounty2020-02-232023-06-13
3651Blind XSS against a Googler Blind XSS Google Rojan Rijal (@uraniumhacker) Bug Bounty2020-02-232023-06-13
3649Stored-XSS-on-groups-google-com Stored XSS Google Alessandro Rumampuk (@Rando02355205) Bug Bounty2020-02-252023-06-13
3641The Tricky XSS XSS NA Smaran Chand (@smaranchand) Bug Bounty2020-02-282023-06-13
3624Google Ads Self-XSS & Html Injection $5000 Self-XSS HTML injection Google Syahri Ramadan (@adonkidz7) Bug Bounty2020-03-072023-06-13
3602Using Vulnerability Analytics Feature Like a Boss SSRF Reflected XSS Authentication bypass NA Ozgur Alp (@ozgur_bbh) Bug Bounty2020-03-152023-06-13
3600How I Earned $1750 at Shopify Bug Bounty Program XSS Open redirect Shopify Ashish Dhone (@ashketchum_16) Bug Bounty2020-03-162023-06-13
3597Where is my Train : Tracking to Hacking ! Reflected XSS SQL injection Google Anil Tom (mr_4nk) Bug Bounty2020-03-172023-06-13
3594Reflected XSS on microsoft.com subdomains Reflected XSS Microsoft Raimonds Liepins (@lv_linkers) Bug Bounty2020-03-192023-06-13