Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
262My First Bug, Open redirect at Epic Games → $500 Bounty Open redirect Epic Games Professor the Hunter (@bughuntar) Bug Bounty2023-03-272023-06-13
258A short tell of LFI from PDF link → Professor the Hunter LFI NA Professor the Hunter (@bughuntar) Bug Bounty2023-03-292023-06-13
255BingBang: The AAD misconfiguration that led to Bing.com results manipulation and account takeover explained Account takeover Azure AD Cloud XSS Privilege escalation Microsoft (Bing) Hillai Ben-Sasson (@hillai) Bug Bounty2023-03-292023-06-13
229Post Account Takeover? Account Takeover of Internal Tesla Accounts Account takeover SSO Tesla Evan Connelly (@Evan_Connelly) Bug Bounty2023-04-042023-06-13
200TOPdesk vulnerable to XML Signature Wrapping Attacks XML Signature Wrapping SAML SSO TOPdesk Paulo A. Silva (@pauloasilva_com) Bug Bounty2023-04-122023-06-13
136AWS Identity Center (formerly known as AWS SSO): A Guide to Privilege Escalation and Identity and Access Management Privilege escalation Cloud AWS Jason Kao Bug Bounty2023-05-012023-06-13
54Ericsson Sensitive Data Exposure via Trace.axd Information disclosure Ericsson David Sopas (@dsopas) Bug Bounty2023-05-252023-06-13