| 1676 | Small bugs are more dangerous than you think |
Self-XSS
Stored XSS
Open redirect
CSRF |
NA |
Liv Matan (@terminatorLM) |
Bug Bounty | 2022-04-01 | 2023-06-13 |
| 1562 | The Underrated Bugs, Clickjacking, CSS Injection, Drag-Drop XSS, Cookie Bomb, Login+Logout CSRF… |
CSS injection
Clickjacking
Account takeover
XSS
Cookie bomb
Self-XSS
CSRF |
NA |
Renwa (@RenwaX23) |
Bug Bounty | 2022-05-10 | 2023-06-13 |
| 993 | Mr. Robot: Self Xss from Informative to high 1200$ ,csrf, open redirect,self xss to stored |
Self-XSS
CSRF |
NA |
Ahmad A Abdulla (@lu3ky13) |
Bug Bounty | 2022-10-06 | 2023-06-13 |
| 908 | Chaining multiple vulnerabilities for credential stealing |
CSRF
Self-XSS
XSS |
NA |
Bartłomiej Bergier (@_bergee_) |
Bug Bounty | 2022-10-25 | 2023-06-13 |
| 682 | I Hope This Sticks: Analyzing ClipboardEvent Listeners for Stored XSS |
Stored XSS
Self-XSS |
Zoom |
Eugene Lim (@spaceraccoonsec) |
Bug Bounty | 2022-12-17 | 2023-06-13 |
| 606 | Hacking Hackers for fun and profit |
Self-XSS
Blind XSS |
NA |
Valeriy Shevchenko (@Krevetk0Valeriy) |
Bug Bounty | 2023-01-09 | 2023-06-13 |
| 497 | SSO Gadgets: Escalate (Self-)XSS to ATO |
SSO
OAuth
Account takeover
Self-XSS
Login CSRF |
NA |
Lauritz Holtmann (@_lauritz_) |
Bug Bounty | 2023-02-04 | 2023-06-13 |
| 329 | Self XSS To Stored Through IDOR/ |
IDOR
Self-XSS
Stored XSS |
NA |
Arben Shala (@arbennsh) |
Bug Bounty | 2023-03-08 | 2023-06-13 |
| 317 | Account Takeover: An Epic Bug Bounty Story |
Account takeover
Self-XSS
Pre-account takeover |
NA |
Jaydev Ahire |
Bug Bounty | 2023-03-11 | 2023-06-13 |
| 316 | [Netflix][Smart TV] — Chaining Self-XSS with Session poisoning. |
Self-XSS
Cookie injection
Session management issue |
Netflix |
Lyubomir Tsirkov (@lyubo_tsirkov) |
Bug Bounty | 2023-03-11 | 2023-06-13 |
| 243 | Unveiling the Secrets: My Journey of Hacking Google’s OSS |
CSRF
Self-XSS |
Google |
7𝖍3𝖍4𝖈kv157 (@7h3h4ckv157) |
Bug Bounty | 2023-03-31 | 2023-06-13 |
