Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
106RCE due to Dependency Confusion — $5000 bounty! Dependency confusion RCE NA Chevon Phillip (@ChevonPhillip) Bug Bounty2023-05-102023-06-13
105From One Vulnerability to Another: Outlook Patch Analysis Reveals Important Flaw in Windows API Privilege escalation NTLM Microsoft (Outlook) Ben Barnea (@nachoskrnl) Bug Bounty2023-05-102023-06-13
104Bypass IIS Authorisation with this One Weird Trick - Three RCEs and Two Auth Bypasses in Sitecore 9.3 RCE Authorization bypass Security code review Sitecore Dylan Pindur Bug Bounty2023-05-102023-06-13
103What is kong & why we’re relying on it RCE Sandbox escape Authentication bypass Hardcoded credentials Broken Access Control Privilege escalation JWT Konga Laluka (@TheLaluka) Bug Bounty2023-05-102023-06-13
102Hacking Chess.com: My Journey to Unlock Premium Bots on the Android App Android Privilege Escalation Chess.com Fr4 (@_icebre4ker_) Bug Bounty2023-05-102023-06-13
101Rendezvous with a Chatbot: Chaining Contextual Risk Vulnerabilities Chatbot Websockets Cross-Site WebSocket Hijacking (CSWH) Captcha bypass NA Abeer Banerjee (@bugasur) Bug Bounty2023-05-112023-06-13
100Discovering a Hidden Security Loophole: Rent luxury Cars for a Single Dollar Payment tampering NA Yash Sancheti Bug Bounty2023-05-122023-06-13
99One Bug at a Time: I failed my quiz on purpose to get $1,000! IDOR NA atomiczsec (@atomiczsec) Bug Bounty2023-05-122023-06-13
98The Printer Goes Brrrrr, Again! Printer hacking Buffer Overflow Memory corruption Canon Rémi Jullian (@netsecurity1) Bug Bounty2023-05-122023-06-13
97Container security: Infecting images to establish backdoors Container security Kubernetes NA Emilien Socchi (@emiliensocchi) Bug Bounty2023-05-122023-06-13
96CS:GO: From Zero to 0-day Game hacking RCE Memory corruption Arbitrary file download Arbitrary file write DLL Hijacking Privilege Escalation Valve (CS:GO) Felipe Bug Bounty2023-05-132023-06-13
95CVE-2023-26818 - Bypass TCC with Telegram in macOS TCC bypass Local Privilege Escalation Apple (macOS) Dan Revah (@danrevah) Bug Bounty2023-05-152023-06-13
94Pimcore: One click, two security vulnerabilities Path traversal SQL injection Arbitrary file write RCE Security code review Pimcore Yaniv Nizry (@YNizry) Bug Bounty2023-05-152023-06-13
93Linux IPv6 "Route of Death" 0day DoS Kernel hacking IPv6 Linux Kernel Organization Max VA (@maxpl0it) Bug Bounty2023-05-152023-06-13
92Finding and reporting a Gatekeeper bypass exploit with help from Mac Monitor GateKeeper bypass Local Privilege Escalation MacOS Apple (macOS) Brandon Dalton (@PartyD0lphin) Bug Bounty2023-05-152023-06-13
91Triple Threat: Breaking Teltonika Routers Three Ways IoT RCE OS command injection SSRF XSS Teltonika Roni Gavrilov Bug Bounty2023-05-152023-06-13
90Avast Anti-Virus privileged arbitrary file create on virus restore (CVE-2023-1586) TOCTOU Arbitrary file write Local Privilege Escalation Avast NortonLifeLock Denis Skvortcov (@Denis_Skvortcov) Bug Bounty2023-05-152023-06-13
89Bypassing open redirect protection site-wide on web2py applications Open redirect Regex Web2py Mohamed Dief (@DemoniaSlash) Bug Bounty2023-05-152023-06-13
88FriendlyName’ Buffer Overflow Vulnerability in Wemo Smart Plug V2 IoT Buffer Overflow Memory corruption Reverse engineering Belkin (Wemo) Amit Serper (@0xAmit) Bug Bounty2023-05-162023-06-13
87Unauthenticated Remote Command Execution in Multiple WAGO Products RCE OS command injection Security code review WAGO Quentin Kaiser (@QKaiser) Bug Bounty2023-05-162023-06-13
86Hardcore RCE via directory name for $3.000 RCE OS command injection Security code review NA Lev Shmelev Bug Bounty2023-05-162023-06-13
85From GitHub To Account Takeover: Misconfigured Actions Place GCP & AWS Accounts At Risk Account takeover Cloud OpenID Connect CI/CD NA Rezonate Bug Bounty2023-05-162023-06-13
84From DA to EA with ESC5 Active Directory Privilege Escalation Internal pentest NA Andy Robbins (@_wald0) Bug Bounty2023-05-172023-06-13
83DOS via cache poisoning Web cache deception DoS NA Allam Rachid (@blank_cold) Bug Bounty2023-05-172023-06-13
82LOLBINed — Finding “LOLBINs” In AV Uninstallers Local Privilege Escalation Kaspersky F-Secure Trend Micro McAfee Nasreddine Bencherchali (@nas_bench) Bug Bounty2023-05-172023-06-13