Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
3094Weaponizing XSS For Fun & Profit XSS CSRF NA Saad Ahmed (@XSaadAhmedX) Bug Bounty2020-10-142023-06-13
3074Automating xss identification with Dalfox & Paramspider Reflected XSS NA Paras Arora (@parasarora06) Bug Bounty2020-10-272023-06-13
3040Evernote: Universal-XSS, theft of all cookies from all sites, and more Universal XSS Evernote Oversecured (@OversecuredInc) Bug Bounty2020-11-122023-06-13
3034Smuggling an (Un)exploitable XSS HTTP Request Smuggling XSS NA Julien Ahrens (@MrTuxracer) Bug Bounty2020-11-132023-06-13
3027Microsoft Bug Bounty Writeup – Stored XSS Vulnerability Stored XSS Microsoft Pethuraj (@Pethuraj) Bug Bounty2020-11-152023-06-13
30112 Reflected XSS In Razer Reflected XSS Razer Mostafa Bug Bounty2020-11-212023-06-13
3010Weird (im)possible XSS on error page Reflected XSS NA Rody Shahnazarian (@Komradz86) Bug Bounty2020-11-212023-06-13
3009Escalating XSS to Account Takeover Reflected XSS Account takeover NA Aditya Verma (@0cirius0) Bug Bounty2020-11-222023-06-13
3006Reflected Cross Site Scripting on REDACTED Program (Bounty: 750$) Reflected XSS NA can1337 (@canmustdie) Bug Bounty2020-11-232023-06-13
2989Cross Site Scripting (XSS) Reflected in one of the subdomains of “General Motors”(Bugbounty) Reflected XSS General Motors - Bug Bounty2020-12-032023-06-13
2986Opera Browser Cross Site Scripting (XSS) XSS Android Opera Neil Mark Ochea (@nmochea) Bug Bounty2020-12-052023-06-13
2983[CVE-2019-17674 & CVE-2020-11025] Stored XSS through navigation menu item edited in Customizer in Wordpress (Write Up) Stored XSS WordPress Evan Ricafort (@evanricafort) Bug Bounty2020-12-062023-06-13
2982Story of the best vulnerability I’ve found so far… Self-XSS Blind XSS Account takeover NA Vedant Tekale (@_justYnot) Bug Bounty2020-12-072023-06-13
2981"Important, Spoofing" - zero-click, wormable, cross-platform remote code execution in Microsoft Teams RCE Stored XSS CSP bypass CSTI Microsoft Oskars Vegeris Bug Bounty2020-12-072023-06-13
2976Content-Security-Policy Bypass to perform XSS using MIME sniffing XSS CSP bypass NA Kleiton Kurti (@kleiton0x7e) Bug Bounty2020-12-102023-06-13
2971How i got my First Bug Bounty in Intersting Target (LFI to SXSS) LFI Stored XSS NA Ph.Hitachi Bug Bounty2020-12-112023-06-13
2969Security Study of Service Worker Cross-Site Scripting. XSS Service worker based XSS NA Phakpoom Chinprutthiwong Bug Bounty2020-12-112023-06-13
2951Cookie Tossing to RCE on Google Cloud JupyterLab Self-XSS DoS CSRF RCE Google s1r1us (@s1r1u5_) Bug Bounty2020-12-232023-06-13
2948EN | Account Takeover via Web Cache Poisoning based Reflected XSS Reflected XSS Web cache poisoning Account takeover NA Lütfü Mert Ceylan (@lutfumertceylan) Bug Bounty2020-12-262023-06-13
2945Chaining CORS by Reflected xss to Account takeover #My first Blog CORS misconfiguration Reflected XSS Account takeover NA Santosh Kumar Sha (@killmongar1996) Bug Bounty2020-12-262023-06-13
2943[Google VRP] Hijacking Google Docs Screenshots postMessage XSS Google Sreeram KL (@kl_sree) Bug Bounty2020-12-272023-06-13
2920Stored XSS on Product Description [HIGH] — $400 Stored XSS NA Emanuel Beni Harijanto Bug Bounty2021-01-072023-06-13
2915Blind XSS in Google Analytics Admin Panel — $3133.70 Blind XSS Google Ashish Dhone (@ashketchum_16) Bug Bounty2021-01-082023-06-13
2903Stealing User Information Via XSS Via Parameter Pollution Open redirect XSS NA Hamza Avvan (@hamzaavvan) Bug Bounty2021-01-122023-06-13
2899How I managed to trigger a Stored-XSS in an online store with the help of Cache Poisoning Web cache poisoning Stored XSS NA Schizo! Bug Bounty2021-01-142023-06-13