Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
253713 Nagios Vulnerabilities, #7 will SHOCK you! RCE Local Privilege Escalation XSS Security code review Nagios Samir Ghanem (@sam0x21r) Bug Bounty2021-05-202023-06-13
2416Apple Security Bounty: A personal experience Permission bypass iOS Apple Nicolas Brunner Bug Bounty2021-07-132023-06-13
2340Size Matters — CVE-2021–0485 (High) Local Privilege Escalation Android Google Dimitrios Valsamaras (@Ch0pin) Bug Bounty2021-08-072023-06-13
2234Mistuned Part 1: Client-side XSS to Calculator and More XSS Memory corruption iOS Apple CodeColorist (@codecolorist) Bug Bounty2021-09-102023-06-13
2194Disclosure of three 0-day iOS vulnerabilities and critique of Apple Security Bounty program Information disclosure Local Privilege Escalation Privacy issue Apple Denis Tokarev / illusionofchaos Bug Bounty2021-09-242023-06-13
2168[EN] Stored XSS in the administrator’s panel due to misuse of MarkupSafe Stored XSS pass Culture Aethlios (@AethliosIK) Bug Bounty2021-10-062023-06-13
2138Exploiting Request forgery on Mobile Applications. CSRF Account takeover Android iOS Pinterest Sayed Abdelhafiz (@dPhoeniixx) Bug Bounty2021-10-192023-06-13
2114Write Up – XSS Stored In api.media.atlassian.com Via Doc File (iOS) Stored XSS Atlassian Omar Espino (@omespino) Bug Bounty2021-10-282023-06-13
2071Keybase App Vulnerability: Incomplete Cleanup of Messages In Keybase for Android/iOS, CVE-2021-34421 Information disclosure Keybase Olivia O’Hara (@oliviaohara) Bug Bounty2021-11-172023-06-13
2069Write Up – Apple N/A: PII Information, Full Contact List, Main Phone No. And Main Icloud Email Extracted; Bug Patched: Arbitrary Local File Read Via Zip File And Symlinks On Ios Files App. Arbitrary file read Apple Omar Espino (@omespino) Bug Bounty2021-11-172023-06-13
2027Write Up – XSS Stored In files.slack.com Via XML/SVG File (iOS) – $1,000 USD XSS Slack Omar Espino (@omespino) Bug Bounty2021-12-032023-06-13
1897How I got access to 25+ Tesla’s around the world. By accident. And curiosity. Default credentials Tesla David Colombo (@david_colombo_) Bug Bounty2022-01-232023-06-13
1859Abusing Facebooks `Call To Action` To Launch Internal Deeplinks CSRF Android iOS Meta / Facebook Ashley King (@AshleyKingUK) Bug Bounty2022-02-022023-06-13
1714Files.app Symbolic Link Following iOS Apple Ron Masas (@RonMasas) Bug Bounty2022-03-192023-06-13
1706Story about more than 3.5 million PII leakage in Yahoo!!! IDOR Information disclosure iOS Yahoo! / Verizon Media dhakal_bibek (@dhakal__bibek) Bug Bounty2022-03-222023-06-13
1703When Equal is Not, Another WebView Takeover Story Android NA Dimitrios Valsamaras (@Ch0pin) Bug Bounty2022-03-222023-06-13
1596[EN] Privileged account creation via Mass Assignment towards a full compromise using a Stored XSS Stored XSS Mass assignment Security code review pass Culture Aethlios (@AethliosIK) Bug Bounty2022-04-262023-06-13
1512Exploiting iOS app for fun and profit Account takeover Information disclosure NA Bijan Murmu (@0xbijan) Bug Bounty2022-05-292023-06-13
1442Exploiting vulnerabilities in iOS Application IDOR Bruteforce Lack of rate limiting Account takeover iOS NA Raj Singh Chauhan (@raj_singh_ch) Bug Bounty2022-06-222023-06-13
1430Bug: Cisco IOS SNMPv3 ACL Issues Information disclosure Cisco Gerry Gosselin (@ggPixelHealth) Bug Bounty2022-06-262023-06-13
1260iOS Privacy: Instagram and Facebook can track anything you do on any website in their in-app browser Privacy issue Meta / Facebook Felix Krause (@KrauseFx) Bug Bounty2022-08-102023-06-13
1250Identity Confusion in WebView-based Mobile App-in-app Ecosystems Android iOS Alipay Lei Zhang, Zhibo Zhang, Ancong Liu, Yinzhi Cao, Xiaohan Zhang, Yanjun Chen, Yuan Zhang, Guangliang Yang & Min Yang Bug Bounty2022-08-112023-06-13
1201Amazon Quickly Fixed A Vulnerability In Ring Android App That Could Expose Users’ Camera Recordings XSS iOS Android Amazon David Sopas (@dsopas) Bug Bounty2022-08-182023-06-13
1197VPNs on iOS are a scam Privacy issue Apple Michael Horowitz (@defensivecomput) Bug Bounty2022-08-202023-06-13
1078HTTP Desync Attack (Request Smuggling) - Mass Account Takeover at a Cryptocurrency based asset and 121 other websites HTTP Request Smuggling Desync attack NA Ankit Singh (@AnkitCuriosity) Bug Bounty2022-09-142023-06-13