Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
4864I figured out a way to hack any of Facebook’s 2 billion accounts, and they paid me a $15,000 bounty for it Bruteforce Account takeover Meta / Facebook Anand Prakash (@anandpraka_sh) Bug Bounty2018-02-092023-06-13
4863Stored XSS on Snapchat Stored XSS Snapchat Mrityunjoy (@mitunjoy11) Bug Bounty2018-02-092023-06-13
4862Oracle Cross Site Scripting Vulnerability -Adesh Kolte Reflected XSS Oracle Adesh Nandkishor kolte (@AdeshKolte) Bug Bounty2018-02-102023-06-13
4861#BugBounty — “How I was able to shop for free!”- Payment Price Manipulation Parameter tampering Payment tampering NA Avinash Jain (@logicbomb_1) Bug Bounty2018-02-112023-06-13
4860An analysis of logic flaws in web-of-trust services Logic flaw Keybase EdOverflow (@EdOverflow) Bug Bounty2018-02-132023-06-13
4859$7.5k Google services mix-up Logic flaw Google Ezequiel Pereira (@epereiralopez) Bug Bounty2018-02-142023-06-13
4858How I was able to remotely crash any android user’s instagram app and was paid a mere 500$ for it. Android DoS Meta / Facebook Waleed Ahmed Bug Bounty2018-02-152023-06-13
4857#BugBounty — Exploiting CRLF Injection can lands into a nice bounty CRLF injection NA Avinash Jain (@logicbomb_1) Bug Bounty2018-02-172023-06-13
4856Exploiting CORS Miss configuration using XSS CORS misconfiguration NA Noman Shaikh (@nomanali181) Bug Bounty2018-02-182023-06-13
4854How I hacked Tinder accounts using Facebook’s Account Kit and earned $6,250 in bounties Account takeover Authorization flaw Tinder Meta / Facebook Anand Prakash (@anandpraka_sh) Bug Bounty2018-02-202023-06-13
4853[RCE] Remote Code Execution in Wordpress iOS Application (version 9.3) RCE iOS WordPress Evan Ricafort (@evanricafort) Bug Bounty2018-02-212023-06-13
4852POODLE SSLv3 bug on multiple twitter smtp servers Cryptographic issues Twitter Omar Espino (@omespino) Bug Bounty2018-02-212023-06-13
4851Modifying any Ad Space and Placement IDOR Meta / Facebook Joshua Regio Bug Bounty2018-02-222023-06-13
4850The Fuzz…The Bug..The Action – A Race Condition bug in Facebook Chat Groups leads to spy on conversations! Race condition Meta / Facebook Seif Elsallamy (@seifelsallamy) Bug Bounty2018-02-232023-06-13
4849Bypassing Google’s authentication to access their Internal Admin panels Authentication bypass Google Vishnu Prasad P G (@vishnuprasadnta) Bug Bounty2018-02-242023-06-13
4848How I was able to delete any image in Facebook community question forum IDOR Meta / Facebook Sarmad Hassan (@JubaBaghdad) Bug Bounty2018-02-242023-06-13
4847#BugBounty — API keys leakage, Source code disclosure in India’s largest e-commerce health care company. Path traversal NA Avinash Jain (@logicbomb_1) Bug Bounty2018-02-252023-06-13
4846How i Hacked into a bugcrowd. public program RCE NA Vishnuraj Bug Bounty2018-02-252023-06-13
4845Re-dressing Instagram – Leaking Application Tokens via Instagram ClickJacking Vulnerability! Clickjacking Meta / Facebook Mohamed A. Baset Bug Bounty2018-02-252023-06-13
4844The 2.5mins or 2.5k$ hawk-eye bug – A Facebook Pages Admins Disclosure Vulnerability! Information disclosure Meta / Facebook Mohamed A. Baset Bug Bounty2018-02-252023-06-13
4843How I found A Surprising XSS Vulnerability on Oracle NetSuite ? XSS Oracle Circle Ninja (@circleninja) Bug Bounty2018-03-022023-06-13
4842#BugBounty — How I could book cab using your wallet money in India’s largest auto transportation company! OTP bypass NA Avinash Jain (@logicbomb_1) Bug Bounty2018-03-052023-06-13
4841Facebook Bug Bounty Reports Authorization flaw Logic flaw Information disclosure Meta / Facebook Raushan Raj (@raushan_rajj) Bug Bounty2018-03-062023-06-13
4840Clickjackings in Google worth 12644.7$ Clickjacking Google Raushan Raj (@raushan_rajj) Bug Bounty2018-03-062023-06-13
4839Stored XSS, and SSRF in Google using the Dataset Publishing Language Stored XSS SSRF Google Craig Arendt (@signalchaos) Bug Bounty2018-03-072023-06-13