Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
4819Facebook BugBounty: Intercept incoming friend requests of Victim add/accept to your facebook account Authorization flaw Meta / Facebook Family guy Bug Bounty2018-04-022023-06-13
4810Source Code Analysis in YSurvey — Luminate bug Authentication bypass Authorization flaw SQL injection Yahoo! / Verizon Media Rojan Rijal (@uraniumhacker) Bug Bounty2018-04-102023-06-13
4791#BugBounty — "Journey from LFI to RCE!!!"-How I was able to get the same in one of the India’s popular property buy/sell company. LFI RCE NA Avinash Jain (@logicbomb_1) Bug Bounty2018-04-192023-06-13
4780#BugBounty — How I was able to bypass firewall to get RCE and then went from server shell to get root user account! RCE NA Avinash Jain (@logicbomb_1) Bug Bounty2018-04-292023-06-13
4779How I found 2.9 RCE at Yahoo! Bug Bounty program RCE Yahoo! / Verizon Media Kedrisec (@kedrisec) Bug Bounty2018-04-302023-06-13
4760$36k Google App Engine RCE RCE Google Ezequiel Pereira (@epereiralopez) Bug Bounty2018-05-202023-06-13
4756RCE by uploading a web.config RCE NA 003random (@rub003) Bug Bounty2018-05-222023-06-13
4750How I got hall of fame in two fortune 500 companies — An RCE story… RCE NA Alfie (@emenalf) Bug Bounty2018-05-292023-06-13
4744How I Earned $750 Bounty Reward From AT&T bug Bounty -Adesh Kolte RCE Clickjacking XSS Same Origin Method Execution AT&T Adesh Nandkishor kolte (@AdeshKolte) Bug Bounty2018-06-012023-06-13
4732[PayPal BBP] I could’ve deleted All SMC messages. Using Brute-Force technique. CSRF Paypal Ayoub Ait Elmokhtar (@aessadek) Bug Bounty2018-06-102023-06-13
4730Server-Side Spreadsheet Injection – Formula Injection to Remote Code Execution CSV injection Server side spreadsheet injection Formula injection RCE Google Jake Miller Bug Bounty2018-06-112023-06-13
4721[Responsible disclosure] How I could have booked movie tickets through other user accounts Password reset Account takeover Bruteforce OTP bypass AGS Cinemas Bharathvaj Ganesan Bug Bounty2018-06-182023-06-13
4720Manage Engine OpManager Multiple Authenticated RCE Vulnerabilities RCE Path traversal Unrestricted file upload Information disclosure Arbitrary file write Zoho (ManageEngine) Denis Andzakovic Bug Bounty2018-06-182023-06-13
4707Unauthenticated Command Injection Vulnerability in VMware NSX SD-WAN by VeloCloud OS command injection RCE VMware Brian Sullivan Bug Bounty2018-06-292023-06-13
4703Latex to RCE, Private Bug Bounty Program RCE NA Yashar Shahinzadeh (@YShahinzadeh) Bug Bounty2018-07-062023-06-13
4693Attacking PostgreSQL Database Bruteforce Weak credentials NA Vishnuraj Bug Bounty2018-07-162023-06-13
4685RCE on Yahoo Luminate RCE Yahoo! / Verizon Media Rojan Rijal (@uraniumhacker) Bug Bounty2018-07-192023-06-13
4682RCE due to ShowExceptions RCE Information disclosure Debugging enabled NA Harsh Jaiswal (@rootxharsh) Bug Bounty2018-07-202023-06-13
4677Vulnerability in Hangouts Chat a.k.a. how Electron makes open redirect great again Open redirect RCE Google Michał Bentkowski (@SecurityMB) Bug Bounty2018-07-242023-06-13
4667How I could access your internal servers, steal and modify your image repository RCE NA thehackerish (@thehackerish) Bug Bounty2018-07-312023-06-13
4639How I Chained 4 Bugs(Features?) into RCE on Amazon Collaboration System RCE Amazon Orange Tsai (@orange_8361) Bug Bounty2018-08-112023-06-13
4625Remote Code Execution on a Facebook server RCE Meta / Facebook Daniel Le Gall (@Blaklis_) Bug Bounty2018-08-242023-06-13
4623Traversing the Path to RCE Path traversal RCE NA hawkinsecurity Bug Bounty2018-08-272023-06-13
4608How I could download the source code of an Indian e-commerce website!! File disclosure Source code disclosure NA Minali Arora (@AroraMinali) Bug Bounty2018-09-052023-06-13
4606Simple Login Brute Force / Current Password Requirement Bypass IDOR Account takeover Bruteforce NA Mandeep Jadon (@1337tr0lls) Bug Bounty2018-09-072023-06-13