| 4662 | #BugBounty — @Paytm Customer Information is at risk — India’s largest digital wallet company |
IDOR |
Paytm |
Avinash Jain (@logicbomb_1) |
Bug Bounty | 2018-08-03 | 2023-06-13 |
| 4661 | Blind-XSS in Chrome Experiments - Google (Write Up) |
Blind XSS |
Google |
Evan Ricafort (@evanricafort) |
Bug Bounty | 2018-08-03 | 2023-06-13 |
| 4660 | Stored XSS in GameSkinny |
Stored XSS |
GameSkinny |
Friendly (@SkeletorKeys) |
Bug Bounty | 2018-08-03 | 2023-06-13 |
| 4659 | Blind-XSS in Chrome Experiments - Google (Write Up) |
Blind XSS |
Google |
Evan Ricafort (@evanricafort) |
Bug Bounty | 2018-08-03 | 2023-06-13 |
| 4658 | My First Swag Pack : A Logical Bug on Edmodo |
Logic flaw |
Edmodo |
Abartan Dhakal (@imhaxormad) |
Bug Bounty | 2018-08-05 | 2023-06-13 |
| 4657 | Reflected XSS Primagames.com |
Reflected XSS |
Prima Games |
Friendly (@SkeletorKeys) |
Bug Bounty | 2018-08-06 | 2023-06-13 |
| 4656 | Self XSS leads to blind XSS and reflected XSS. |
Blind XSS
Reflected XSS |
NA |
Friendly (@SkeletorKeys) |
Bug Bounty | 2018-08-06 | 2023-06-13 |
| 4655 | Unauth meetings access |
Authorization flaw
Logic flaw |
Google |
Rojan Rijal (@uraniumhacker) |
Bug Bounty | 2018-08-06 | 2023-06-13 |
| 4654 | FakesApp: A Vulnerability in WhatsApp |
Content spoofing
Authorization flaw
Privacy issue |
Meta / Facebook |
Dikla Barda |
Bug Bounty | 2018-08-07 | 2023-06-13 |
| 4653 | Sending out phishing e-mails from @microsoft.com |
HTML injection |
Microsoft |
SI9INT (@si9int) |
Bug Bounty | 2018-08-07 | 2023-06-13 |
| 4652 | How I gained commit access to Homebrew in 30 minutes |
Information disclosure |
Homebrew |
Eric Holmes (@vesirin) |
Bug Bounty | 2018-08-07 | 2023-06-13 |
| 4651 | From data leak to account takeover |
Account takeover
Information disclosure
Password reset |
NA |
Antony Garand (@AntoGarand) |
Bug Bounty | 2018-08-07 | 2023-06-13 |
| 4650 | How I hacked a Crypto Exchange (Bug Bounty Writeup) |
IDOR |
NA |
Muhammad Abdullah |
Bug Bounty | 2018-08-07 | 2023-06-13 |
| 4649 | My First Critical Report |
Password reset
Account takeover |
NA |
Miguel Corral (@mcorral74) |
Bug Bounty | 2018-08-08 | 2023-06-13 |
| 4648 | This is how can I spoof ANY Sentry.Io log infinitely and create fake error-logs |
Content spoofing |
HackerOne
Sentry |
Carlos Daniel Giovanella |
Bug Bounty | 2018-08-09 | 2023-06-13 |
| 4647 | My Disclosed Report about Basic auth Api details at Reverb.com |
Information disclosure |
Reverb |
Mohamed Haron (@m7mdharon) |
Bug Bounty | 2018-08-09 | 2023-06-13 |
| 4646 | From TOMCAT to NT AUTHORITYSYSTEM |
Default credentials |
NA |
Rahul R |
Bug Bounty | 2018-08-09 | 2023-06-13 |
| 4645 | Subdomain Takeover: Yet another Starbucks case |
Subdomain takeover |
Starbucks |
Patrik Hudak (@0xpatrik) |
Bug Bounty | 2018-08-09 | 2023-06-13 |
| 4644 | Practical Web Cache Poisoning |
Web cache poisoning |
Mozilla
HubSpot
Cloudflare
Binary.com
Amazon (CloudFront) |
James Kettle (@albinowax) |
Bug Bounty | 2018-08-09 | 2023-06-13 |
| 4643 | [Twitter Bug Bounty] Misconfigured JSON endpoint on ads.twitter.com lead to Access control issue and Information Disclosure of role privileged users. |
Authorization flaw
Information disclosure |
Twitter |
Peerzada Fawaz Ahmad Qureshi |
Bug Bounty | 2018-08-10 | 2023-06-13 |
| 4642 | Misconfigured JIRA setting - Apigee |
Information disclosure |
Google
Atlassian |
Tutorgeeks |
Bug Bounty | 2018-08-10 | 2023-06-13 |
| 4641 | Adminer Script Results to Pwning Server?, Private Bug Bounty Program |
Authentication bypass |
NA |
Yashar Shahinzadeh (@YShahinzadeh) |
Bug Bounty | 2018-08-11 | 2023-06-13 |
| 4640 | S3 Bucket Misconfiguration in Amazon |
AWS misconfiguration |
Amazon |
Divyanshu Shukla (@justm0rph3u5) |
Bug Bounty | 2018-08-11 | 2023-06-13 |
| 4639 | How I Chained 4 Bugs(Features?) into RCE on Amazon Collaboration System |
RCE |
Amazon |
Orange Tsai (@orange_8361) |
Bug Bounty | 2018-08-11 | 2023-06-13 |
| 4638 | Distorted and Undeletable Posts in Facebook Group |
Authorization flaw
Logic flaw |
Meta / Facebook |
Sarmad Hassan (@JubaBaghdad) |
Bug Bounty | 2018-08-12 | 2023-06-13 |
