Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
3591Remote Image Upload Leads to RCE (Inject Malicious Code to PHP-GD Image) Unrestricted file upload RCE NA Muhammad R. Maulana Bug Bounty2020-03-212023-06-13
3584Exploitation of the CVE-2018-15961 – Unrestricted File Upload in Adobe ColdFusion Unrestricted file upload NA Supras (@LdrTom) Bug Bounty2020-03-262023-06-13
3555Unrestricted CV File Upload Unrestricted file upload NA vict0ni (@vict0ni) Bug Bounty2020-04-072023-06-13
3540CSRF to RCE bug chain in Prestashop v1.7.6.4 and below RCE CSRF Stored XSS Unrestricted file upload PrestaShop Sivanesh Ashok (@sivaneshashok) Bug Bounty2020-04-182023-06-13
3476Stored XSS Leads to Plaintext Password Disclosure Stored XSS Information disclosure Unrestricted file upload NA bad5ect0r (@bad5ect0r) Bug Bounty2020-05-172023-06-13
3410The Accidental RCE Unrestricted file upload NA Mr. Beast (@__mr_beast__) Bug Bounty2020-06-092023-06-13
3404Guest Blog: From File Upload to RCE Unrestricted file upload RCE NA Lukasz Wierzbicki (@v13rs8a) Bug Bounty2020-06-102023-06-13
3362Bypassing file upload filter by source code review in Bolt CMS RCE Unrestricted file upload Path traversal Security code review Bolt CMS Sivanesh Ashok (@sivaneshashok) Bug Bounty2020-06-272023-06-13
3331RCE via image upload functionality Unrestricted file upload RCE NA Adwaith KS Bug Bounty2020-07-052023-06-13
3269XSS, RCE & HTML File Upload in same endpoint XSS RCE Unrestricted file upload NA Tarikul Islam (@sa1tama0) Bug Bounty2020-07-292023-06-13
3143Unauthenticated File upload Vulnerability on Synology Sub-domain Unrestricted file upload Synology Touhid Shaikh Bug Bounty2020-09-202023-06-13
2905Unrestricted File Upload Unrestricted file upload NA Binamra Pandey Bug Bounty2021-01-122023-06-13
2885How I was rewarded a $1000 bounty after abusing File Upload functionality to Stored XSS Vulnerability leading to credential theft of a vistor in a website. Unrestricted file upload Stored XSS NA Kunal Khubchandani (@iamkun4l) Bug Bounty2021-01-182023-06-13
2755Bragging Rights: Killing File Uploads softly Unrestricted file upload Stored XSS NA Manas Harsh (@ManasH4rsh) Bug Bounty2021-02-282023-06-13
2721Finding keys under the door Stored XSS Unrestricted file upload Paytm Naveen Prakaasham K S V Bug Bounty2021-03-122023-06-13
2666RCE on Starbucks Singapore and more for $5600 RCE Unrestricted file upload Starbucks Kamil Onur Özkaleli (@ko2sec) Bug Bounty2021-04-042023-06-13
2630Exploiting Unrestricted File Upload to achieve Remote Code Execution on a bug bounty program Unrestricted file upload RCE NA Jadek Mark (@mase289) Bug Bounty2021-04-182023-06-13
2464Exploiting File Upload Functionality in Unique Way. Unrestricted file upload NA Rohit Soni (@streetofhacker) Bug Bounty2021-06-192023-06-13
2363From Hobby to Hacking Unrestricted file upload RCE Missing authentication NA Muhammad Syahrul Haniawan (@b0x_in) Bug Bounty2021-07-312023-06-13
2252Bypassed! and uploaded a sweet reverse shell Unrestricted file upload NA Ajay Sharma (@security_donut) Bug Bounty2021-09-052023-06-13
2142Independently Secure, Together Not So Much – A Story Of 2 WP Plugins RCE Race condition Unrestricted file upload Security code review NA Adrian Tiron (@Adrian__T) Bug Bounty2021-10-172023-06-13
2089Unrestricted File Upload Leads to SSRF and RCE ImageTragick Unrestricted file upload SSRF RCE NA Muhammad Adel (@ItsFadinG_) Bug Bounty2021-11-112023-06-13
2009File Upload to RCE Unrestricted file upload NA Ahmed Magdy (@8Ahmed88Magdy8) Bug Bounty2021-12-092023-06-13
1988Stored XSS by bypassing signature XSS Unrestricted file upload NA Abdulrahman Makki (@AMakki1337) Bug Bounty2021-12-202023-06-13
1969XSS via file upload XSS Unrestricted file upload NA Jay Sharma Bug Bounty2021-12-272023-06-13