Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
4860An analysis of logic flaws in web-of-trust services Logic flaw Keybase EdOverflow (@EdOverflow) Bug Bounty2018-02-132023-06-13
4859$7.5k Google services mix-up Logic flaw Google Ezequiel Pereira (@epereiralopez) Bug Bounty2018-02-142023-06-13
4841Facebook Bug Bounty Reports Authorization flaw Logic flaw Information disclosure Meta / Facebook Raushan Raj (@raushan_rajj) Bug Bounty2018-03-062023-06-13
4835#BugBounty — “Let me reset your password and login into your account “-How I was able to Compromise any User Account via Reset Password Functionality Logic flaw Password reset Account takeover NA Avinash Jain (@logicbomb_1) Bug Bounty2018-03-142023-06-13
4828Misconfiguration of Demographics Privacy in a Page Logic flaw Meta / Facebook Mark Christian Deduyo Bug Bounty2018-03-262023-06-13
4826Google bug bounty for security exploit that influences search results Logic flaw Google Tom Anthony (@TomAnthonySEO) Bug Bounty2018-03-272023-06-13
4824How I Could Have Promoted Any Facebook Page For Free. Logic flaw Meta / Facebook Anees Khan (@AneesEthical) Bug Bounty2018-03-302023-06-13
4809How I broke into Google Issue Tracker Logic flaw Authorization flaw Google Abhishek Bundela (@abhibundela) Bug Bounty2018-04-102023-06-13
4807Hijacking User’s Private Information access_token from Microsoft Office360 facebook App Logic flaw Microsoft Mohamed A. Baset Bug Bounty2018-04-132023-06-13
4802$5k Service dependencies Logic flaw Google Ezequiel Pereira (@epereiralopez) Bug Bounty2018-04-162023-06-13
4784The Unknown Hero-App Logic Bugs Logic flaw Canva Circle Ninja (@circleninja) Bug Bounty2018-04-252023-06-13
4776Stealing money from one account to another account Logic flaw NA Ajay Gautam (@evilboyajay) Bug Bounty2018-05-022023-06-13
4737Zero to Account Takeover: How I Impersonated’ Someone Else Using Auth0 Logic flaw Auth0 Daniel Svartman Bug Bounty2018-06-052023-06-13
4726How I got paid premium plan for free on many popular websites Logic flaw NA Khaled Hassan Bug Bounty2018-06-132023-06-13
4710How re-signing up for an account lead to account takeover Logic flaw Account takeover NA Zseano (@zseano) Bug Bounty2018-06-262023-06-13
4690Hacking thousands of companies through their helpdesk Account takeover DoS Logic flaw NA Khaled Hassan Bug Bounty2018-07-172023-06-13
4689Bypass Admin approval, Mute Member and Posting Permissions for Only admins in Facebook groups Authorization flaw Logic flaw Meta / Facebook Sarmad Hassan (@JubaBaghdad) Bug Bounty2018-07-182023-06-13
4658My First Swag Pack : A Logical Bug on Edmodo Logic flaw Edmodo Abartan Dhakal (@imhaxormad) Bug Bounty2018-08-052023-06-13
4655Unauth meetings access Authorization flaw Logic flaw Google Rojan Rijal (@uraniumhacker) Bug Bounty2018-08-062023-06-13
4638Distorted and Undeletable Posts in Facebook Group Authorization flaw Logic flaw Meta / Facebook Sarmad Hassan (@JubaBaghdad) Bug Bounty2018-08-122023-06-13
4635Another "TicketTrick" story Ticket Trick Logic flaw Uber Rojan Rijal (@uraniumhacker) Bug Bounty2018-08-142023-06-13
4610Facebook Bug Bounty! {Permission Bug} Authorization flaw Logic flaw Meta / Facebook Ali Tütüncü (@alicanact60) Bug Bounty2018-09-052023-06-13
4603Bypassing Hotstar Premium with DOM manipulation and some JavaScript Logic flaw Payment bypass Hotstar OpSecX (@OpSecX) Bug Bounty2018-09-072023-06-13
4579Facebook $750 Reward for a Simple Bug Authentication bypass Logic flaw Meta / Facebook Aman Shahid (@amansmughal) Bug Bounty2018-09-182023-06-13
4573Bypassing Firebase authorization to create custom goo.gl subdomains Logic flaw IDOR Google Thomas Orlita (@ThomasOrlita) Bug Bounty2018-09-212023-06-13