Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
4531[Bug bounty | mail.ru] Access to the admin panel of the partner site and data disclosure of 2 million users Authentication bypass Blind XSS Mail.ru Max (@iSecMax) Bug Bounty2018-10-122023-06-13
4503It’s all in the detail: Email leak & Account takeover thanks to WayBackMachine & extensive knowledge about the program Information disclosure Authentication bypass Account takeover NA Zseano (@zseano) Bug Bounty2018-10-302023-06-13
4448Instagram Multi-factor authentication Bypass MFA bypass Meta / Facebook Vishnuraj Bug Bounty2018-11-272023-06-13
4416#BugBounty — “User Account Takeover-I just need your email id to login into your shopping portal account” OAuth Authentication bypass Account takeover NA Avinash Jain (@logicbomb_1) Bug Bounty2018-12-132023-06-13
4404Asus’S Admin Panel Auth Bypass Authentication bypass Asus Mustafa Khan (@by6153) Bug Bounty2018-12-182023-06-13
4397Client side validation strikes again: PIN code bypass ! Client-side enforcement of server-side security Authentication bypass Authorization flaw Netflix Linxo Davy (@RandoriSec) Bug Bounty2018-12-222023-06-13
4317How i was able to dump SqlDB | Simple bug Directory listing SQL injection Authentication bypass NA clever idi0t Bug Bounty2019-02-072023-06-13
4279SHAREit Multiple Vulnerabilities Enable Unrestricted Access to Adjacent Devices’ Files Android Arbitrary file download Authentication bypass SHAREit Abdulrahman Nour (@aboodnour) Bug Bounty2019-02-252023-06-13
4099Password Bypass and Something Else… Authentication bypass NA Vibhurushi Chotaliya (@_Vibhurushi_) Bug Bounty2019-06-162023-06-13
4052OAuth authentication bypass on Airbnb acquisition using 1-char Open Redirect Open redirect Token leak Account takeover Airbnb Evgeniy Yakovchuk (@h1_sp1d3r) Bug Bounty2019-07-102023-06-13
3949Shodan is your friend!!! If you ignore him you will lose many… SQL injection Authentication bypass NA Vijaysimha Reddy Bathini (@fatratfatrat) Bug Bounty2019-08-282023-06-13
3933Accessing 2 million Verizon Pay Monthly contracts Information disclosure Authentication bypass IDOR Yahoo! / Verizon Media Daley Bee (@daley) Bug Bounty2019-09-092023-06-13
3905[Bug Bounty] Exploiting Cookie Based XSS by Finding RCE Information disclosure SQL injection Authentication bypass Unrestricted file upload RCE XSS NA Tomi (@noobe_io) Bug Bounty2019-09-222023-06-13
3890REST framework Admin Panel bypass and how I recon for this vulnerability Authentication bypass NA Aziz Hakim (@hackerb0y_) Bug Bounty2019-10-022023-06-13
3831LDAP Admin Account Bypassed :) LDAP injection Authentication bypass NA Himanshu Pdy (@himanshu_pdy) Bug Bounty2019-11-162023-06-13
3823Broken session management leads to bypass 2FA and Permanent access to Facebook user’s Authentication bypass Meta / Facebook Mahmoud Barakat (@0xBarakat) Bug Bounty2019-11-192023-06-13
3791Authentication Bypass MFA bypass NA Rushiikesh (@u1tran00b) Bug Bounty2019-12-092023-06-13
3783Facebook New Account Verification Bypass Authentication bypass Meta / Facebook Santosh Baral (@santoshbrl5) Bug Bounty2019-12-132023-06-13
3742Bypass Mobile PIN Verification Authentication bypass NA Sourav Sahana (@kernel_rider) Bug Bounty2020-01-012023-06-13
3694OK Google: bypass the authentication! Authentication bypass Google Mattia Vinci Bug Bounty2020-01-312023-06-13
3602Using Vulnerability Analytics Feature Like a Boss SSRF Reflected XSS Authentication bypass NA Ozgur Alp (@ozgur_bbh) Bug Bounty2020-03-152023-06-13
3563Touch ID Authentication Bypass on Evernote and Dropbox IOS Apps Authentication bypass iOS Evernote Dropbox Sahil Tikoo (@viperbluff) Bug Bounty2020-04-032023-06-13
3529Two Factor Authentication Bypass [ $50 ] MFA bypass NA Aung Pyae Ko Ko (@BlcKVRtuL1) Bug Bounty2020-04-242023-06-13
3489Another Zoho ManageEngine Story Authentication bypass Zoho Florian Hauser (@frycos) Bug Bounty2020-05-112023-06-13
3460My First Bug Bounty — 2 Factor Authentication Bypass OTP bypass NA Talatmehmood Bug Bounty2020-05-222023-06-13