Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
1328WordPress Transposh: Exploiting a Blind SQL Injection via XSS - RCE Security SQL injection XSS Account takeover WordPress Julien Ahrens (@MrTuxracer) Bug Bounty2022-07-222023-06-13
1123WordPress Core - Unauthenticated Blind SSRF SSRF WordPress Simon Scannell (@scannell_simon) Bug Bounty2022-09-062023-06-13
337WordPress BuddyForms Plugin — Unauthenticated Insecure Deserialization (CVE-2023–26326) Insecure deserialization Security code review RCE NA Joshua Martinelle (@J0_mart) Bug Bounty2023-03-072023-06-13
259High severity vulnerability fixed in WordPress Elementor Pro plugin. Broken Access Control Privilege Escalation Security code review Elementor Jerome Bruandet Bug Bounty2023-03-282023-06-13
154Never Connect to RDP Servers Over Untrusted Networks RDP Microsoft Olivier Bilodeau (@obilodeau) Bug Bounty2023-04-262023-06-13
81DLL Hijacking Strikes Back: Exploiting Windows on ARM RDP Client (CVE-2023-24905) DLL Hijacking Local Privilege Escalation Microsoft (Windows) Dor Dali Bug Bounty2023-05-172023-06-13
47XSS in WordPress via open embed auto discovery XSS postMessage WordPress Jakub Żoczek (@zoczus) Bug Bounty2023-05-292023-06-13