| 3109 | We Hacked Apple for 3 Months: Here’s What We Found |
RCE
Authentication bypass
Authorization bypass
SSRF
XXE
Blind XSS
IDOR
OS command injection
SQL injection |
Apple |
Sam Curry (@samwcyo) |
Bug Bounty | 2020-10-07 | 2023-06-13 |
| 3016 | Out of Band XXE in an E-commerce IOS app |
XXE |
NA |
Gaurang Bhatnagar (@0xgaurang) |
Bug Bounty | 2020-11-19 | 2023-06-13 |
| 2603 | WordPress 5.7 XXE Vulnerability |
XXE |
WordPress |
Sonar (@SonarSource) |
Bug Bounty | 2021-04-27 | 2023-06-13 |
| 2593 | My first OOB XXE exploitation |
XXE |
NA |
Joshua Martinelle (@J0_mart) |
Bug Bounty | 2021-04-30 | 2023-06-13 |
| 2462 | Full Local File Read via Error Based XXE using XLIFF File |
XXE |
NA |
pwn.vg / Tomi (@mastomii) |
Bug Bounty | 2021-06-19 | 2023-06-13 |
| 2381 | XXE Case Studies |
XXE |
NA |
cinzinga (@cinzinga_) |
Bug Bounty | 2021-07-26 | 2023-06-13 |
| 2367 | XXE in Public Transport Ticketing Mobile APP |
XXE
RCE |
NA |
Nikhil (niks) (@niksthehacker) |
Bug Bounty | 2021-07-30 | 2023-06-13 |
| 2358 | Blind XXE Leads to Internal Port Scanning Through SSRF |
XXE
SSRF |
NA |
Sam Paredes (@caffeinevulns) |
Bug Bounty | 2021-08-01 | 2023-06-13 |
| 2335 | Multiple Vulnerabilities In cPanel/WHM |
XXE
Stored XSS
Privilege escalation
CSRF
Cross-Site WebSocket Hijacking (CSWH) |
cPanel |
Adrian Tiron (@adrian__t) |
Bug Bounty | 2021-08-10 | 2023-06-13 |
| 2179 | Ping%27ing XMLSec |
XSLT
XXE |
Ping
Netflix
Paypal |
An Trinh (@_tint0) |
Bug Bounty | 2021-09-30 | 2023-06-13 |
| 2136 | CVE-2021-2471 MySQL JDBC XXE |
XXE |
Oracle (MySQL) |
pyn3rd (@pyn3rd) |
Bug Bounty | 2021-10-21 | 2023-06-13 |
| 2115 | A journey from XML External Entity (XXE) to NTLM hashes! |
XXE |
NA |
Shubham Chaskar (@chaskar_shubham) |
Bug Bounty | 2021-10-28 | 2023-06-13 |
| 1915 | XXE in SAML SSO Writeup - Bug Bounty |
XXE |
NA |
Aditya Singh / rook1337 (@imrook1337) |
Bug Bounty | 2022-01-16 | 2023-06-13 |
| 1726 | SSD Advisory – Exchange Server GetWacInfo Information Disclosure Vulnerability |
XXE
Information disclosure |
Microsoft |
Alex Birnberg (@alexbirnberg) |
Bug Bounty | 2022-03-15 | 2023-06-13 |
| 1487 | Autodesk Fusion 360 <= 2.0.12887 “Insert SVG” Blind XXE |
XXE |
Autodesk |
Giulio %27linset%27 Casciaro (@Lins3t) |
Bug Bounty | 2022-06-09 | 2023-06-13 |
| 1411 | CVE-2022-28219: Unauthenticated XXE to RCE and Domain Compromise in ManageEngine ADAudit Plus |
XXE
SSRF
RCE |
Zoho |
Naveen Sunkavally |
Bug Bounty | 2022-06-29 | 2023-06-13 |
| 1339 | Write-up: BlogEngine .NET - 0day Discovery |
Path traversal
XXE |
BlogEngine .NET |
Jake McCallum (@0xLanks) |
Bug Bounty | 2022-07-19 | 2023-06-13 |
| 1122 | Exploiting Out-of-Band XXE in the Wild |
XXE
SSRF |
NA |
Mahmoud Youssef (@0xmahmoudjo0) |
Bug Bounty | 2022-09-06 | 2023-06-13 |
| 1086 | Data Exfiltration through Blind XXE on PDF Generator |
Blind XXE
WAF bypass |
NA |
Arben Shala (@arbennsh) |
Bug Bounty | 2022-09-13 | 2023-06-13 |
| 972 | Pwning ManageEngine — From Endpoint to Exploit: A deep dive into CVE-2021–42847 |
Arbitrary file write
XXE
RCE |
Zoho |
Erik Wynter (@WynterErik) |
Bug Bounty | 2022-10-12 | 2023-06-13 |
| 933 | Second Order XXE Exploitation |
XXE
Arbitrary file read |
NA |
Kuldeep Pandya (@kuldeepdotexe) |
Bug Bounty | 2022-10-19 | 2023-06-13 |
| 688 | Missing Bricks: Finding Security Holes in LEGO APIs |
XSS
XXE |
LEGO |
Shiran Yodev |
Bug Bounty | 2022-12-15 | 2023-06-13 |
| 685 | CVE-2022-42710: A journey through XXE to Stored-XSS |
Stored XSS
XXE
Security code review |
Linear |
Omar Hashem (@OmarHashem666) |
Bug Bounty | 2022-12-16 | 2023-06-13 |
| 578 | XML Security in Java |
XXE
Billion laugh attack
DoS |
NA |
Pieter De Cremer (@0xDC0DE) |
Bug Bounty | 2023-01-17 | 2023-06-13 |
| 465 | Vulnerabilities due to XML files processing: XXE in C# applications in theory and in practice |
XXE |
BlogEngine.NET |
Sergey Vasiliev (@_SergVasiliev_) |
Bug Bounty | 2023-02-11 | 2023-06-13 |
