Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
2065A Story of an Epic Blind Remote Code Execution(RCE) RCE OS command injection NA Akash Solanki (@MAALP1225) Bug Bounty2021-11-182023-06-13
1881Command Injection in Google Cloud Shell RCE OS command injection Google Ademar Nowasky Junior Bug Bounty2022-01-282023-06-13
1819Advisory: Western Digital My Cloud Pro Series PR4100 RCE RCE OS command injection Western Digital Quentin Kaiser (@QKaiser) Bug Bounty2022-02-152023-06-13
1809Advisory: Cisco RV340 Dual WAN Gigabit VPN Router (RCE over LAN) RCE Unrestricted file upload OS command injection Cisco Quentin Kaiser (@QKaiser) Bug Bounty2022-02-172023-06-13
1754SSD Advisory – NETGEAR DGND3700v2 PreAuth Root Access Authentication bypass OS command injection RCE Netgear - Bug Bounty2022-03-092023-06-13
1698Finding bugs to trigger Unauthenticated Command Injection in a NETGEAR router (PSV-2022–0044) XSS Arbitrary file read Authentication bypass OS command injection RCE Netgear stypr (@stereotype32) Bug Bounty2022-03-252023-06-13
1677Pwning a Cisco RV340 with a 4 bug chain exploit Local Privilege Escalation OS command injection RCE Session management issue Cisco Liv (@terminatorLM) Bug Bounty2022-04-012023-06-13
1571Cloudflare Pages, part 1: The fellowship of the secret Command injection Container escape Bash Path injection RCE Local Privilege Escalation Information disclosure Cloudflare Sean Yeoh (@seanyeoh) Bug Bounty2022-05-062023-06-13
1496Multiple vulnerabilities in Zyxel zysh OS command injection Memory corruption Zyxel Marco Ivaldi / Raptor (@0xdea) Bug Bounty2022-06-072023-06-13
1439Exploiting Bitdefender Antivirus: RCE from any website RCE Command injection Bitdefender Wladimir Palant (@WPalant) Bug Bounty2022-06-222023-06-13
1372Hacking on a Private Program (Salseforce crm) RCE OS command injection NA Maruf Hosan (@thinkermaruff) Bug Bounty2022-07-132023-06-13
1314CVE-2022–36446 — Webmin 1.996 — Remote Code Execution (RCE — Authenticated) During Install New Packages RCE OS command injection Webmin Emir Polat (@devilsgrins) Bug Bounty2022-07-262023-06-13
1293My Second CVE (CVE-2022-31855) OS command injection Local Privilege Escalation RStudio y0ung_dst (@Y0ung_MA) Bug Bounty2022-07-302023-06-13
1279QNAP Poisoned XML Command Injection (Silently Patched) OS command injection RCE QNAP Jake Baines (@Junior_Baines) Bug Bounty2022-08-042023-06-13
1263Advisory: Cisco Small Business RV Series Routers Web Filter Database Update Command Injection Vulnerability OS command injection RCE Cisco Quentin Kaiser (@QKaiser) Bug Bounty2022-08-092023-06-13
1257Google Cloud Shell - Command Injection OS command injection RCE Cloud Google Bugra Eskici (@bugraeskici) Bug Bounty2022-08-102023-06-13
1251Mining Node.js Vulnerabilities via Object Dependence Graph and Query RCE OS command injection Prototype pollution Path traversal NA Song Li Bug Bounty2022-08-102023-06-13
1249Rapid7 Discovered Vulnerabilities in Cisco ASA, ASDM, and FirePOWER Services Software RCE OS command injection Local Privilege Escalation MiTM Cisco Jake Baines (@Junior_Baines) Bug Bounty2022-08-112023-06-13
1246The cloud has an isolation problem: PostgreSQL vulnerabilities affect multiple cloud vendors Privilege escalation Cross-tenant vulnerability OS command injection Local Privilege Escalation Cloud Google Microsoft Aiven Shir Tamari (@shirtamari) Bug Bounty2022-08-112023-06-13
1195Blind command injection RCE OS command injection NA Bartłomiej Bergier (@_bergee_) Bug Bounty2022-08-212023-06-13
1176Command Injection in the GitHub Pages Build Pipeline RCE OS command injection GitHub Joren Vrancken Bug Bounty2022-08-252023-06-13
1163Out-Of-Bond Remote code Execution(RCE) on De Nederlandsche Bank N.V. with burp-suite collaborator OS command injection RCE De Nederlandsche Bank Santosh Kumar Sha (@killmongar1996) Bug Bounty2022-08-282023-06-13
1080Security Advisory: NETGEAR Routers FunJSQ Vulnerabilities OS command injection RCE MiTM Netgear Quentin Kaiser (@QKaiser) Bug Bounty2022-09-142023-06-13
1079Breaking Bitbucket: Pre Auth Remote Command Execution (CVE-2022-36804) RCE OS command injection Atlassian Maxwell Garrett (@TheGrandPew) Bug Bounty2022-09-142023-06-13
1046Exploiting Distroless Images Command injection Arbitrary file read Arbitrary file write Container escape Google Daniel Teixeira (@TheRedOperator) Bug Bounty2022-09-222023-06-13