Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
4712Account Take over via reset password Password reset Account takeover NA Yasser Gersy (@yassergersy) Bug Bounty2018-06-252023-06-13
4711Subdomain Takeover: Starbucks points to Azure Subdomain takeover Starbucks Patrik Hudak (@0xpatrik) Bug Bounty2018-06-252023-06-13
4710How re-signing up for an account lead to account takeover Logic flaw Account takeover NA Zseano (@zseano) Bug Bounty2018-06-262023-06-13
4709Take Advantage of Out-of-Scope Domains in Bug Bounty Programs XSS NA Abdullah Hussam (@Abdulahhusam) Bug Bounty2018-06-272023-06-13
4708This popular Facebook app publicly exposed your data for years Information disclosure Authorization flaw Meta / Facebook Nametests.com Inti De Ceukelaire (@securinti) Bug Bounty2018-06-282023-06-13
4707Unauthenticated Command Injection Vulnerability in VMware NSX SD-WAN by VeloCloud OS command injection RCE VMware Brian Sullivan Bug Bounty2018-06-292023-06-13
4706https://leigh-annegalloway.com/tumblr/ Captcha bypass Username enumeration Information disclosure Automattic Leigh-Anne Galloway (@L_AGalloway) Bug Bounty2018-06-292023-06-13
4705Chaining Multiple Vulnerabilities to Gain Admin Access IDOR Account takeover NA Ben Sadeghipour (@nahamsec) Bug Bounty2018-07-022023-06-13
4704The $12,000 Intersection between Clickjacking, XSS, and Denial of Service Clickjacking XSS DoS Bustabit Sam Curry (@samwcyo) Bug Bounty2018-07-042023-06-13
4703Latex to RCE, Private Bug Bounty Program RCE NA Yashar Shahinzadeh (@YShahinzadeh) Bug Bounty2018-07-062023-06-13
4702CVE-2016-3473 XXE NA hateshape (@hateshaped) Bug Bounty2018-07-062023-06-13
4701CVE-2018-8819 XXE NA hateshape (@hateshaped) Bug Bounty2018-07-072023-06-13
4700Server Side Request Forgery on Vanilla Forums SSRF Vanilla Forums Vikash Chaudhary (@OffensiveHunter) Bug Bounty2018-07-072023-06-13
4699#BugBounty - Compromising User Account- "How I was able to compromise user account via HTTP Parameter Pollution(HPP)" HTTP parameter pollution Password reset Account takeover NA Avinash Jain (@logicbomb_1) Bug Bounty2018-07-072023-06-13
4698Persistent XSS at AH.nl Stored XSS AH.nl Jonathan Bouman (@JonathanBouman) Bug Bounty2018-07-092023-06-13
4697Gsuite Hangouts Chat 5k IDOR IDOR Google Cam (@SecretlyHidden1) Bug Bounty2018-07-102023-06-13
4696XSS in Microsoft subdomain XSS Microsoft Sudhanshu Rajbhar (@sudhanshur705) Bug Bounty2018-07-132023-06-13
4695Should this be public though? Information disclosure Shopify Uber Rojan Rijal (@uraniumhacker) Bug Bounty2018-07-132023-06-13
4694Bug Bounty at Bangladeshi Site. SQL injection NA Shaifullah Shaon Bug Bounty2018-07-152023-06-13
4693Attacking PostgreSQL Database Bruteforce Weak credentials NA Vishnuraj Bug Bounty2018-07-162023-06-13
4692WRITE UP – TELEGRAM BUG BOUNTY – WHATSAPP N/A [“Blind” XSS Stored iOS in messengers twins, who really care about your security?] Blind XSS Meta / Facebook Omar Espino (@omespino) Bug Bounty2018-07-162023-06-13
4691CVE-2018-13784: PrestaShop 1.6.x Privilege Escalation Privilege escalation Session management issue PrestaShop Charles Fol (@cfreal_) Bug Bounty2018-07-162023-06-13
4690Hacking thousands of companies through their helpdesk Account takeover DoS Logic flaw NA Khaled Hassan Bug Bounty2018-07-172023-06-13
4689Bypass Admin approval, Mute Member and Posting Permissions for Only admins in Facebook groups Authorization flaw Logic flaw Meta / Facebook Sarmad Hassan (@JubaBaghdad) Bug Bounty2018-07-182023-06-13
4688Hey Developer, Give me your API keys.!! Information disclosure Crowdin Devansh batham (@devanshwolf) Bug Bounty2018-07-182023-06-13