Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
3221False2True, Match and Replace bug hunting — A cautionary tale Privilege escalation NA Vuk Ivanovic Bug Bounty2020-08-142023-06-13
3207Windows AppX Deployment Service Local Privilege Escalation (CVE-2020-1488 Local Privilege Escalation Microsoft ACTIVELabs Bug Bounty2020-08-182023-06-13
3204How to contact Google SRE: Dropping a shell in cloud SQL SQL injection Privilege escalation Parameter injection RCE Google wtm@offensi.com (@wtm_offensi) Bug Bounty2020-08-182023-06-13
3168CVE-2020-8150 – Remote Code Execution as SYSTEM/root via Backblaze RCE Local Privilege Escalation Backblaze Jason Geffner (@JasonGeffner) Bug Bounty2020-09-092023-06-13
3155Dropbox Escalation of Privileges to SYSTEM on Windows Local Privilege Escalation Dropbox Teresa Alberto Bug Bounty2020-09-172023-06-13
3152Privilege Escalation via Account Takeover on NodeBB Forum Software — Bug Bounty (512$) — CVE-2020–15149 IDOR Account takeover NodeBB Muhammed Eren Uygun (@erenuyguun) Bug Bounty2020-09-192023-06-13
3142suPHP - The vulnerable ghost in your shell Local Privilege Escalation NA Maxime (@punkeel) Bug Bounty2020-09-212023-06-13
311590 days, 16 bugs, and an Azure Sphere Challenge Local privilege escalation RCE DoS Information disclosure Microsoft Cisco Talos Bug Bounty2020-10-062023-06-13
3114Our Experiences Participating in Microsoft’s Azure Sphere Bounty Program Local privilege escalation RCE Security Feature bypass Microsoft McAfee Advanced Threat Research (ATR) Bug Bounty2020-10-062023-06-13
3108Kud I Enter Your Server? New Vulnerabilities in Microsoft Azure Privilege escalation RCE Cloud Microsoft Intezer Bug Bounty2020-10-082023-06-13
3100Guest Blog Post: Rollback Attack Local Privilege Escalation Mozilla Xiaoyin Liu (@general_nfs) Bug Bounty2020-10-122023-06-13
3095MS Enterprise app management service RCE. CVE-2022-35841 RCE Local Privilege Escalation Windows Microsoft Ceri Coburn (@_ethicalchaos_) Bug Bounty2020-10-132023-06-13
3041Local Privilege Escalation Vulnerability Discovered in VMware Fusion Local Privilege Escalation VMware Rich Mirch (@0xm1rch) Bug Bounty2020-11-112023-06-13
3030SD-PWN Part 2 — Citrix SD-WAN Center — Another Network Takeover RCE Authentication bypass Path traversal OS command injection Local Privilege Escalation Citrix Systems Realmode Labs (@RealmodeLabs) Bug Bounty2020-11-152023-06-13
3008Fixing a Google Vulnerability Privilege escalation Google I (@InsecureNature) Bug Bounty2020-11-222023-06-13
3007SD-PWN — Part 3 — Cisco vManage — Another Day, Another Network Takeover RCE SSRF Arbitrary file write Path traversal OS command injection Local Privilege Escalation Cisco Realmode Labs (@RealmodeLabs) Bug Bounty2020-11-232023-06-13
2927Privilege Escalation: From being a normal user to admin Privilege escalation Broken Access Control NA Akshar Tank Bug Bounty2021-01-052023-06-13
2926Each and every request make sense… Privilege escalation Exposed JWT generation endpoint JWT NA Akshar Tank Bug Bounty2021-01-052023-06-13
2912A %27Novel%27 Way to Bypass Executable Signature Checks with Electron Local Privilege Escalation NA Parsia Hackerman (@cryptogangsta) Bug Bounty2021-01-082023-06-13
2893BitLocker Lockscreen bypass Lock screen bypass Local Privilege Escalation Windows Microsoft Jonas L (@jonasLyk) Bug Bounty2021-01-152023-06-13
2860How We Escaped Docker in Azure Functions Privilege escalation Cloud Microsoft Intezer Bug Bounty2021-01-272023-06-13
2841CVE-2020-9759 - Getting root on webOS Local Privilege Escalation Browser hacking LG Andreas Lindh (@addelindh) Bug Bounty2021-02-032023-06-13
2831How I Gain Access to the Server Administration of a Million-Dollar Company Privilege escalation Mass assignment NA Marx Chryz Del Mundo Bug Bounty2021-02-082023-06-13
2800I Own your Cloud Shell: Taking over “Azure Cloud Shell” Kubernetes Cluster Through Unsecured Kubelet API 30,000$ Bounty Privilege escalation RCE Microsoft Chen Cohen (@chencococococo) Bug Bounty2021-02-152023-06-13
2758Any Account Takeover Through Privilege Escalation Privilege escalation Account takeover NA Shubham Chaskar (@chaskar_shubham) Bug Bounty2021-02-282023-06-13