Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
182#BrokenSesame: Accidental write’ permissions to private registry allowed potential RCE to Alibaba Cloud Database Services Cloud RCE Container escape Kubernetes Privilege escalation Lateral movement Supply chain attack Cross-tenant vulnerability Alibaba Ronen Shustin (@ronenshh) Bug Bounty2023-04-192023-06-13
180Breaking Docker Named Pipes SYSTEMatically: Docker Desktop Privilege Escalation – Part 2 Local Privilege Escalation TOCTOU Arbitrary file write Docker Eviatar Gerzi Bug Bounty2023-04-192023-06-13
179How I Manipulated My Rank on the Bugcrowd Platform Logic flaw Bugcrowd Muhammad Khizer Javed (@khizer_javed47) Bug Bounty2023-04-192023-06-13
178Vulnerability Spotlight: CVE-2023-0264 OpenID Connect OAuth Authentication flaw Privilege escalation Security code review Keycloack Timo Müller (@mtimo44) Bug Bounty2023-04-192023-06-13
177How I hacked hackers in Voorivex Hunt Event Cloudflare bypass WAF bypass Account takeover NA snoopy (@snoopy101101) Bug Bounty2023-04-192023-06-13
176CVE-2022-29844: A Classic Buffer Overflow On The Western Digital My Cloud Pro Series PR4100 Buffer Overflow Memory corruption RCE Western Digital Luca Moro (@johncool__) Bug Bounty2023-04-202023-06-13
175Uncovering a Critical Vulnerability: My Journey of Discovering CVE-2021–31589, a Reflected XSS in LinkedIn Components with known vulnerabilities Reflected XSS LinkedIn Karthikeyan.V (@karthithehacker) Bug Bounty2023-04-202023-06-13
174Turning Vulnerability into Bounty: How CVE-2020–17453 XSS Earned Me a $500 Bounty Components with known vulnerabilities XSS NA Karthikeyan.V (@karthithehacker) Bug Bounty2023-04-202023-06-13
173The Fuzzing Guide to the Galaxy: An Attempt with Android System Services Android Fuzzing Heap overflow Integer overflow Out-of-bounds Write Memory corruption Local Privilege Escalation Samsung Anthony Remy Bug Bounty2023-04-202023-06-13
172Bypassing Link Sharing Protection in Messenger Kids Parent’s Control Feature | Meta Bug Bounty URL validation bypass Meta / Facebook Syd Ricafort (@devsyd11) Bug Bounty2023-04-202023-06-13
171GhostToken – Exploiting GCP application infrastructure to create invisible, unremovable trojan app on Google accounts Cloud OAuth Authorization bypass Google (GCP) Astrix Security (@AstrixSecurity) Bug Bounty2023-04-202023-06-13
170Turning Vulnerability into Bounty: How CVE-2020–17453 XSS Earned Me a $500 Bounty Components with known vulnerabilities XSS NA Karthikeyan.V (@karthithehacker) Bug Bounty2023-04-202023-06-13
169CVE-2023-23525: Get Root via A Fake Installer Local Privilege Escalation Apple (macOS) Mickey Jin (@patch1t) Bug Bounty2023-04-202023-06-13
168XS-Leak: Deanonymize Microsoft Skype Users by any 3rd-party websites XSLeaks Microsoft (Skype) Jayateertha Guruprasad (@JayateerthaG) Bug Bounty2023-04-212023-06-13
167From BitLocker-Suspended to Virtual Machine Internal pentest NA Reino Mostert Bug Bounty2023-04-212023-06-13
166Exploits Explained: Permission misconfiguration within Salesforce JavaScript Remoting tokens used for Apex Controllers Salesforce Security misconfiguration Broken Access Control NA Mahmoud Gamal (@Zombiehelp54) Bug Bounty2023-04-212023-06-13
165Compromising Garmin’s Sport Watches: A Deep Dive into GarminOS and its MonkeyC Virtual Machine IoT Memory corruption Buffer Overflow Integer overflow Out-of-bounds Read Out-of-bounds Write Type confusion Permission bypass Reverse engineering Garmin Tao Sauvage Bug Bounty2023-04-212023-06-13
164Stealing GitHub staff%27s access token via GitHub Actions CI/CD Token leak Privilege escalation Supply chain attack GitHub RyotaK (@ryotkak) Bug Bounty2023-04-222023-06-13
163How careless default credentials impact to massive account takeover Authentication bypass Account takeover Weak credentials NA M Maulana Abdullah Bug Bounty2023-04-222023-06-13
162Discord Rich Presence LeonardSSH.vscord Information disclosure vscord Sudhanshu Rajbhar (@sudhanshur705) Bug Bounty2023-04-232023-06-13
161No Portals Needed MFA bypass Security misconfiguration NA Chen Levy Ben Aroy Bug Bounty2023-04-242023-06-13
160Vocera Report Server Pwnage RCE Arbitrary file upload Path traversal Zip Slip attack Stryker b0yd (@rwincey) Bug Bounty2023-04-242023-06-13
159Odoo: Get your Content Type right, or else! XSS Security code review Odoo Dennis Brinkrolf (@DBrinkrolf) Bug Bounty2023-04-242023-06-13
158CVE-2023-27524: Insecure Default Configuration in Apache Superset Leads to Remote Code Execution RCE Default Flask Secret Key Hardcoded credentials Apache Superset Naveen Sunkavally Bug Bounty2023-04-252023-06-13
157New high-severity vulnerability (CVE-2023-29552) discovered in the Service Location Protocol (SLP) DoS UDP spoofing Service Location Protocol (SLP) Pedro Umbelino Bug Bounty2023-04-252023-06-13