Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
4280Chain of hacks leading to Database Compromise! LFI SSRF NA Avinash Jain (@logicbomb_1) Bug Bounty2019-02-232023-06-13
4180The journey of Web Cache + Firewall Bypass to SSRF to AWS credentials compromise! LFI SSRF WAF bypass Cloudflare bypass NA Avinash Jain (@logicbomb_1) Bug Bounty2019-04-252023-06-13
4145WRITE UP – GOOGLE BUG BOUNTY: LFI ON PRODUCTION SERVERS in “springboard.google.com” – $13,337 USD LFI Google Omar Espino (@omespino) Bug Bounty2019-05-212023-06-13
4143Local File Inclusion in peering.google.com LFI Google Jafar Abo Nada (@Jafar_Abo_Nada) Bug Bounty2019-05-212023-06-13
4103Bug Bounty - Information Disclosure through error message + WAF Bypass led to Local File Inclusion WAF bypass LFI Information disclosure NA Λявєη (@spenkkkkk) Bug Bounty2019-06-152023-06-13
4065How I escalated RFI into LFI RFI LFI NA Hassan Khan Yusufzai (@Splint3r7) Bug Bounty2019-07-012023-06-13
3948My First LFI LFI NA Tirtha Mandal (@tirtha_mandal) Bug Bounty2019-08-312023-06-13
3916Client, not client! LFI NA Tung Pun Bug Bounty2019-09-152023-06-13
3552How i Unlocked the blocked accounts? Password reset HTTP parameter pollution IDOR NA Maria Zulfiqar Bug Bounty2020-04-112023-06-13
3419Local file read via XSS using PDF generate functionality XSS LFI NA Sanjay Singh Jhala (@lordjerry0x01) Bug Bounty2020-06-052023-06-13
3315Don’t stop at one bug $$$$ Open redirect XSS LFI NA Dheeraj Madhukar (@Dheerajmadhukar) Bug Bounty2020-07-102023-06-13
3195How I was able to find easy P1 just by doing Recon LFI NA Kirtan Patel (@kirtanpatel9111) Bug Bounty2020-08-222023-06-13
3194$$ Bounties for Unauthenticated file read in Cisco ASA CVE-2020–3452 LFI NA Supun Halangoda (@halangoda_supun) Bug Bounty2020-08-232023-06-13
3163How I hacked redbus [An online bus-ticketing application] LFI SSRF redBus Sangeetha Rajesh S (@rajesh_sangi12) Bug Bounty2020-09-122023-06-13
3118Leveraging LFI to RCE in a website with +20000 users LFI RCE NA Kleiton Kurti (@kleiton0x7e) Bug Bounty2020-10-042023-06-13
3102Leveraging XSS to Read Internal Files XSS LFI NA Aditya Dixit (@zombie007o) Bug Bounty2020-10-092023-06-13
3004SD-PWN Part 4 — VMware VeloCloud — The Last Takeover RCE Authentication bypass Default credentials SQL injection Path traversal LFI VMware Realmode Labs (@RealmodeLabs) Bug Bounty2020-11-262023-06-13
2992SSTI to Local File Read SSTI LFI NA Demon (@R29k_) Bug Bounty2020-12-022023-06-13
2984RCE via LFI Log Poisoning - The Death Potion RCE LFI Log poisoning NA Jerry Shah (@Jerry) Bug Bounty2020-12-062023-06-13
2971How i got my First Bug Bounty in Intersting Target (LFI to SXSS) LFI Stored XSS NA Ph.Hitachi Bug Bounty2020-12-112023-06-13
2685PHP fopen() function to local file inclusion LFI NA أنس روبي (@xhzeem) Bug Bounty2021-03-282023-06-13
2646Bug Bounty - Information Disclosure through error message + WAF Bypass led to Local File Inclusion LFI Information disclosure NA Arben Shala (@arbennsh) Bug Bounty2021-04-132023-06-13
2563CVE-2020-35580 LFI NA hateshape (@hateshaped) Bug Bounty2021-05-112023-06-13
2506Bypassing LFI (Local File Inclusion) LFI NA Abhishek (@abhishake21) Bug Bounty2021-06-032023-06-13
2444Escalating XSS to Arbitrary File Read XSS LFI NA Pethuraj (@Pethuraj) Bug Bounty2021-06-272023-06-13