Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
4813Reflected XSS on www.zomato.com By Mustafa Hasan Reflected XSS Zomato Mohamed Haron (@m7mdharon) Bug Bounty2018-04-072023-06-13
4812Stealing HttpOnly Cookie via XSS XSS NA Yasser Gersy (@yassergersy) Bug Bounty2018-04-082023-06-13
4811Piercing the veil: Server Side Request Forgery to NIPRNet access SSRF U.S. Dept Of Defense Alyssa Herrera (@Alyssa_Herrera_) Bug Bounty2018-04-092023-06-13
4810Source Code Analysis in YSurvey — Luminate bug Authentication bypass Authorization flaw SQL injection Yahoo! / Verizon Media Rojan Rijal (@uraniumhacker) Bug Bounty2018-04-102023-06-13
4809How I broke into Google Issue Tracker Logic flaw Authorization flaw Google Abhishek Bundela (@abhibundela) Bug Bounty2018-04-102023-06-13
4808Please email me your password Blind XSS Blind SQL injection SMTP injection Account takeover NA Jasmin Laundry (@JR0ch17) Bug Bounty2018-04-112023-06-13
4807Hijacking User’s Private Information access_token from Microsoft Office360 facebook App Logic flaw Microsoft Mohamed A. Baset Bug Bounty2018-04-132023-06-13
4806How I bypassed Ebay process on redirect Open redirect Ebay Mohamed Sayed (@FlEx0Geek) Bug Bounty2018-04-132023-06-13
4805How I hacked companies related to the crypto currency and earned $60,000 Authorization flaw CSRF IDOR Stored XSS HTML injection okex.com livecoin.net Max (@0xw2w) Bug Bounty2018-04-142023-06-13
4804Bypass CSP by Abusing XSS Filter in Edge CSP bypass Microsoft Xiaoyin Liu (@general_nfs) Bug Bounty2018-04-152023-06-13
4803#SecurityBreach — "How I was able to book hotel room for 1.50₹!" CORS misconfiguration NA Hariom Vashisth Bug Bounty2018-04-152023-06-13
4802$5k Service dependencies Logic flaw Google Ezequiel Pereira (@epereiralopez) Bug Bounty2018-04-162023-06-13
4801Bypassing Captcha Like a Boss Captcha bypass NA Ak1T4 (@akita_zen) Bug Bounty2018-04-162023-06-13
4800Spoof an user to create a description of a group in Flickr IDOR Flickr Samuel (@saamux) Bug Bounty2018-04-162023-06-13
4799From an error message to DB disclosure Hardcoded credentials NA Yumi Bug Bounty2018-04-172023-06-13
4798How I got stored XSS using file upload Stored XSS NA gujjuboy10x00 (@vis_hacker) Bug Bounty2018-04-172023-06-13
4797IDOR (at Private Bug Bounty Program) that could Leads to Personal Data Leaks IDOR NA YoKo Kho (@YokoAcc) Bug Bounty2018-04-172023-06-13
4796How I Get the Name of the Hotel (and other Data) that you ever Stay - Personal Data Leaks: Private Bug Bounty Program IDOR NA YoKo Kho (@YokoAcc) Bug Bounty2018-04-182023-06-13
4795Ribose — IDOR with Simple CSRF Bypass — Unrestricted Changes and Deletion to other Photo Profile IDOR Ribose YoKo Kho (@YokoAcc) Bug Bounty2018-04-182023-06-13
4794Whatsapp user’s IP disclosure with Link Preview feature Information disclosure Meta / Facebook Rahul Kankrale (@RahulKankrale) Bug Bounty2018-04-182023-06-13
4793Google Bug: Posting on groups as any user’s behalf Email spoofing Google ssid (@newp_th) Bug Bounty2018-04-182023-06-13
4792Bypassing the Current Password Protection at PayPal TechSupport Portal Authorization flaw Account takeover Paypal YoKo Kho (@YokoAcc) Bug Bounty2018-04-192023-06-13
4791#BugBounty — "Journey from LFI to RCE!!!"-How I was able to get the same in one of the India’s popular property buy/sell company. LFI RCE NA Avinash Jain (@logicbomb_1) Bug Bounty2018-04-192023-06-13
4790Story Of a Stored XSS Bypass Stored XSS NA Prial Islam Khan (@prial261) Bug Bounty2018-04-212023-06-13
4789Turning Self-XSS into non-Self Stored-XSS via Authorization Issue at “PayPal Tech-Support and Brand Central Portal Stored XSS Paypal YoKo Kho (@YokoAcc) Bug Bounty2018-04-212023-06-13