Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
2723[Google VRP] How I Get Blind XSS At Google With Dork (First Bounty and HOF ) Blind XSS Google Rio Mulyadi (@riomulyadi_) Bug Bounty2021-03-112023-06-13
2721Finding keys under the door Stored XSS Unrestricted file upload Paytm Naveen Prakaasham K S V Bug Bounty2021-03-122023-06-13
2708Chaining bugs for the greater good Blind XSS CSRF NA mohamad mahmoudi (@Lotus_619) Bug Bounty2021-03-182023-06-13
2706TikTok for Android 1-Click RCE RCE XSS Insecure intent Android TikTok Sayed Abdelhafiz (@dPhoeniixx) Bug Bounty2021-03-182023-06-13
2703A short story about an XSS in chat.mozilla.org (CVE-2021-21320) XSS Mozilla Guilherme Keerok (@k33r0k) Bug Bounty2021-03-192023-06-13
2698Finding My First Critical Vulnerability Information disclosure NA Thexssrat (@theXSSrat) Bug Bounty2021-03-212023-06-13
2693How I leveraged XSS to make Privilege Escalation to be Super Admin! XSS Privilege escalation NA Asem Eleraky (@melotover) Bug Bounty2021-03-252023-06-13
2692PoC: The easiest 125 Euro’s I Ever made Logic flaw NA Thexssrat (@theXSSrat) Bug Bounty2021-03-252023-06-13
2691Encrypted Payload -> Decrypted Execution ($600) : Stored XSS Stored XSS NA Shrirang Diwakar Bug Bounty2021-03-252023-06-13
2683A weird XSS Reflected XSS NA gato the wizard Bug Bounty2021-03-302023-06-13
2682I felt like there were no more bugs left after winning € 2000 … But an email worth €750 changed my mind Broken Access Control IDOR NA Thexssrat (@theXSSrat) Bug Bounty2021-03-312023-06-13
2672XSS in Large Messenger and Payment App - a Shout Out to Parameter Guessing XSS HTML injection NA Lauritz Holtmann (@_lauritz_) Bug Bounty2021-04-022023-06-13
2671Bragging Rights: Let’s head back to bug bucket XSS IDOR MFA bypass NA Manas Harsh (@ManasH4rsh) Bug Bounty2021-04-022023-06-13
2669Automate Cache Poisoning Vulnerability - Nuclei Web cache poisoning Stored XSS NA Mohamed Elbadry (@_melbadry9) Bug Bounty2021-04-022023-06-13
2665Journeys in Quoteless and Multi Reflection XSS XSS NA Bend Theory (@bendtheory) Bug Bounty2021-04-042023-06-13
2663Breaking GitHub Private Pages for $35k XSS CRLF injection Web cache poisoning GitHub Robert Chen (@NotDeGhost) Bug Bounty2021-04-042023-06-13
2654(CRITICAL) Blind Storage XSS — My first Bug Bounty 💰 Blind XSS CS Money Benjamin Walter Bug Bounty2021-04-082023-06-13
2641How I got 9000 USD by hacking into iCloud XSS Apple Alexandre Fernandes (@fernale) Bug Bounty2021-04-152023-06-13
2638How I earned $$$$ through Stored XSS Stored XSS CSTI NA Harish Bug Bounty2021-04-162023-06-13
2633XSS via Exif Data - The P2 Elevator Stored XSS NA Jerry Shah (@Jerry) Bug Bounty2021-04-182023-06-13
2631Pwning your assignments: Stored XSS via GraphQL endpoint Stored XSS GraphQL NA Kartik Sharma (@dominat0r98) Bug Bounty2021-04-182023-06-13
2621DMCA.COM Hack, Full Disclosure (With Proof-of-Concept) Privilege escalation Client-side enforcement of server-side security Stored XSS Broken Access Control DMCA Joël Aviad Ossi Bug Bounty2021-04-212023-06-13
2620How I was able to inject XSS payload into any user%27s mailbox XSS NA Gaurav Popalghat (@N008x) Bug Bounty2021-04-212023-06-13
2615Telegram bug bounties: XSS, privacy issues, official bot exploitation and more… XSS Authorization flaw DoS NA Davide Bug Bounty2021-04-222023-06-13
2606Reflected XSS on Microsoft Reflected XSS Microsoft N45HT Bug Bounty2021-04-252023-06-13