Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
156Methodological approach to find business logic bugs Logic flaw Payment tampering IP address validation bypass NA Fady Othman (@Fady_Othman) Bug Bounty2023-04-252023-06-13
155API Misconfiguration - Algolia API Key Hardcoded API keys NA Jerry Shah (@Jerry) Bug Bounty2023-04-262023-06-13
154Never Connect to RDP Servers Over Untrusted Networks RDP Microsoft Olivier Bilodeau (@obilodeau) Bug Bounty2023-04-262023-06-13
153Finding XSS in a million websites (cPanel CVE-2023-29489) Reflected XSS Security code review cPanel Shubham Shah (@infosec_au) Bug Bounty2023-04-262023-06-13
152Git Arbitrary Configuration Injection (CVE-2023-29007) Logic flaw Arbitrary Code Execution Security code review Git André Baptista (@0xacb) Bug Bounty2023-04-262023-06-13
151Alias file to rule them all — One click code execution with alias file in macOS Arbitrary Code Execution TCC bypass Apple (macOS) Mikko Kenttälä (@Turmio_) Bug Bounty2023-04-262023-06-13
150Avast Anti-Virus privileged arbitrary file create on virus quarantine (CVE-2023-1585 and CVE-2023-1587) TOCTOU NULL pointer dereference Arbitrary file write Local Privilege Escalation Avast Denis Skvortcov (@Denis_Skvortcov) Bug Bounty2023-04-262023-06-13
149Microsoft Exchange Powershell Remoting Deserialization leading to RCE (CVE-2023-21707) RCE Insecure deserialization Microsoft (Exchange) Nguyễn Tiến Giang (@testanull) Bug Bounty2023-04-282023-06-13
148Redash SAML Authentication Bypass SAML Authentication bypass Redash An Trinh (@_tint0) Bug Bounty2023-04-282023-06-13
147Ambushed by AngularJS: a hidden CSP bypass in Piwik PRO CSP bypass Piwik Gareth Heyes (@garethheyes) Bug Bounty2023-04-282023-06-13
146Privilege Escalation in Microsoft Windows Local Privilege Escalation Microsoft (Windows) Tobias Neitzel (@qtc_de) Bug Bounty2023-04-282023-06-13
145How I Chained an Information Disclosure Bug with SQL Injection SQL injection .git folder disclosure NA Mba-oji Chiagoziem (@g0ziem) Bug Bounty2023-04-302023-06-13
144Netflix — Bypassing Multi-Factor Authentication (MFA) MFA bypass Netflix Lyubomir Tsirkov (@lyubo_tsirkov) Bug Bounty2023-04-302023-06-13
143Exploiting an Order of Operations Bug to Achieve RCE in Oracle Opera RCE Unrestricted file upload Path traversal Security code review Oracle (Opera) Shubham Shah (@infosec_au) Bug Bounty2023-04-302023-06-13
142TENDA–N301-v6–(CVE-2023–29680,CVE-2023–29681) Sensitive Information Sent Over an Unencrypted Channel Tenda Mateus Pantoja Bug Bounty2023-04-302023-06-13
141Bug Bounty Writeup: Stored XSS Vulnerability WAF Bypass Stored XSS WAF bypass NA Rafael Silva "lopseg" Bug Bounty2023-05-012023-06-13
140Unauthorized access to the admin panel via leaked credentials on the WayBackMachine Information disclosure NA Arman (@M7arm4n) Bug Bounty2023-05-012023-06-13
139Azure Devops CICD Pipelines - Command Injection With Parameters, Variables And A Discussion On Runner Hijacking CI/CD OS command injection RCE Microsoft (Azure DevOps Pipelines) Sana Oshika (@bigshika) Bug Bounty2023-05-012023-06-13
138Apache Solr 8.3.1 RCE from exposed administration interface RCE Unrestricted file upload XSLT injection Path traversal Apache Solr Nicolas Brunner Bug Bounty2023-05-012023-06-13
137Placeholder for Dayzzz: Abusing placeholders to extract customer informations SSTI Information disclosure GitHub Ophion Security (@OphionSecurity) Bug Bounty2023-05-012023-06-13
136AWS Identity Center (formerly known as AWS SSO): A Guide to Privilege Escalation and Identity and Access Management Privilege escalation Cloud AWS Jason Kao Bug Bounty2023-05-012023-06-13
135SSD Advisory – KerioControl Remote Code Execution RCE TAR path traversal GFI Software (KerioControl) Simon Janz Bug Bounty2023-05-022023-06-13
134CVE-2023-28231: RCE In The Microsoft Windows DHCPv6 Service RCE Buffer Overflow Memory corruption Microsoft (Windows) Guy Lederfein (@glederfein) Bug Bounty2023-05-022023-06-13
133How do I Bypass Payment when a Subscription ends so I don’t have to pay for my subscription Payment bypass Logic flaw NA Aidil Arief Bug Bounty2023-05-022023-06-13
132Securing Databricks cluster init scripts Privilege escalation Cloud Databricks Elia Florio Bug Bounty2023-05-022023-06-13