Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
1998How I found XSS vulnerability in Amazon in 5 minutes using shodan XSS Amazon Mohamed Taha (@Mohamed12742780) Bug Bounty2021-12-152023-06-13
1989Yes, fun browser extensions can have vulnerabilities too! XSS Browser extension hacking postMessage Meow Wladimir Palant (@WPalant) Bug Bounty2021-12-202023-06-13
1988Stored XSS by bypassing signature XSS Unrestricted file upload NA Abdulrahman Makki (@AMakki1337) Bug Bounty2021-12-202023-06-13
1969XSS via file upload XSS Unrestricted file upload NA Jay Sharma Bug Bounty2021-12-272023-06-13
1961Google Cloud Shell XSS XSS Google NDevTK (@ndevtk) Bug Bounty2021-12-302023-06-13
1955Bug Hunting Journey of 2021 Stored XSS Open redirect Token leak CSRF Logic flaw Information disclosure IDOR Account takeover NA Sudhanshu Rajbhar (@sudhanshur705) Bug Bounty2021-12-312023-06-13
1924Pwning the portal: from database dump to session hijacking SQL injection XSS CSRF NA Bitcrack (@bitcrack_cyber) Bug Bounty2022-01-122023-06-13
1921Xiaomi Execute Arbitrary JavaScript XSS HTML injection Android Xiaomi Neil Mark Ochea (@nmochea) Bug Bounty2022-01-132023-06-13
1920XSS Filter Evasion + IDOR XSS IDOR NA JM Sanchez / 0xEchidonut (@jmrcsnchz) Bug Bounty2022-01-132023-06-13
1917120 Days of High Frequency Hunting SSRF LFI Information disclosure Broken Access Control Authentication bypass XSS SQL injection NA Kuldeep Pandya (@kuldeepdotexe) Bug Bounty2022-01-152023-06-13
1913Critical XSS in chrome extension XSS postMessage NA p3rr0 (@Hperalta89) Bug Bounty2022-01-172023-06-13
1901120 Days of Frequent Hacking SSRF LFI Information disclosure XSS SQL injection NA Kuldeep Pandya (@kuldeepdotexe) Bug Bounty2022-01-212023-06-13
1895First Valid BUG Finding At Microsoft And I Got the Acknowledgments Page Microsoft XSS Microsoft Aidil Arief Bug Bounty2022-01-252023-06-13
1892Hacking the Apple Webcam (again) Universal XSS Browser hacking Apple Ryan Pickren Bug Bounty2022-01-252023-06-13
1878How I Made $16,500 Hacking CDN Caching Servers — Part 1 Web cache poisoning Stored XSS Web cache deception NA Kevin (@bxmbn) Bug Bounty2022-01-292023-06-13
1875XSS via X-Forwarded-Host header XSS Host header injection Omise Abhijeet Biswas (@abhijeetbiswas_) Bug Bounty2022-01-302023-06-13
1873Stored Cross-Site Scripting in MediaWiki Stored XSS NA Nick Berrie (@machevalia) Bug Bounty2022-01-282023-06-13
1866A Peculiar Case of XSS and my first bug XSS Bentley Systems Aman Pareek (@aman_notsogreat) Bug Bounty2022-02-012023-06-13
1862My experience of Hacking The Dutch Government XSS Dutch Government Phenomenal (@Chawla12111) Bug Bounty2022-02-022023-06-13
1860My first bounty, IDOR + Self XSS [€3000] Self-XSS IDOR Intigriti Ladecruze (@ladecruze) Bug Bounty2022-02-022023-06-13
1857A technique to semi-automatically find vulnerabilities in WordPress plugins XSS SQL injection Open redirect CSRF NA kazet (@kazet1234) Bug Bounty2022-02-032023-06-13
1854Solving DOM XSS Puzzles DOM XSS NA Eugene Lim (@spaceraccoonsec) Bug Bounty2022-02-032023-06-13
1850What Bypassing Razer%27s DOM-based XSS Patch Can Teach Us DOM XSS Razer EdOverflow (@EdOverflow) Bug Bounty2022-02-052023-06-13
1843What I Found on Sony Vulnerability Disclosure Program Information disclosure Lack of rate limiting Open redirect IDOR XSS Sony Aditya Singh / rook1337 (@imrook1337) Bug Bounty2022-02-072023-06-13
1840SQL Injection, Reflected XSS and Information Disclosure in one subdomain in just 10 minutes SQL injection XSS Information disclosure NA Mahmoud Hamed (@7odamo_) Bug Bounty2022-02-082023-06-13