Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
2407How i was able to bypass Cloudflare for XSS! XSS NA hosein vita (@HoseinVita) Bug Bounty2021-07-162023-06-13
2405Remote code execution in cdnjs of Cloudflare RCE Path traversal Cloudflare RyotaK (@ryotkak) Bug Bounty2021-07-162023-06-13
2385Easy Bounty With Exposed Buckets & Blobs Cloud storage misconfiguration NA mr.d0x (@mrd0x) Bug Bounty2021-07-262023-06-13
2291Reflective XSS via search box [Bypassing Cloudflare WAF]. Reflected XSS NA Friendly (@SkeletorKeys) Bug Bounty2021-08-262023-06-13
2285SSRF External Service Interaction for Find Real IP CloudFlare and Leads to SQL Injection WAF bypass SSRF SQL injection NA Caesar Evan Santoso Bug Bounty2021-08-282023-06-13
2257Google Cloud Build — under the hood gRPC Google Imre Rad (@ImreRad) Bug Bounty2021-09-022023-06-13
2235Finding Azurescape – Cross-Account Container Takeover in Azure Container Instances Container takeover Container escape Privilege escalation Cloud Microsoft Unit 42 (@Unit42_Intel) Bug Bounty2021-09-092023-06-13
2226Hacking CloudKit - How I accidentally deleted your Apple Shortcuts Logic flaw Apple Frans Rosén (@fransrosen) Bug Bounty2021-09-132023-06-13
2186Zero-Day: Hijacking iCloud Credentials with Apple Airtags (Stored XSS) Stored XSS Apple Bobby Rauch / Bobbyr Bug Bounty2021-09-282023-06-13
2181How I found bug on Google Cloud OTP bypass Google Anuragbhoir11 Bug Bounty2021-09-302023-06-13
2101Unauthenticated Access To Cloud Portal — A 🚪 Without 🗝️ Authentication bypass NA Yukesh Kumar (@3th1c_yuk1) Bug Bounty2021-11-052023-06-13
2069Write Up – Apple N/A: PII Information, Full Contact List, Main Phone No. And Main Icloud Email Extracted; Bug Patched: Arbitrary Local File Read Via Zip File And Symlinks On Ios Files App. Arbitrary file read Apple Omar Espino (@omespino) Bug Bounty2021-11-172023-06-13
2064How I accidentally hacked many companies using N/A vulnerability in Atlassian Cloud Information disclosure Authentication flaw Atlassian Valeriy Shevchenko (@Krevetk0Valeriy) Bug Bounty2021-11-192023-06-13
1976Cache Poisoning at Scale Web cache poisoning GitHub GitLab HackerOne Shopify Cloudflare Youstin (@iustinBB) Bug Bounty2021-12-232023-06-13
1964Remote Code Execution in Google Cloud Dataflow RCE Google Mike Brancato (@meatballninja) Bug Bounty2021-12-282023-06-13
1961Google Cloud Shell XSS XSS Google NDevTK (@ndevtk) Bug Bounty2021-12-302023-06-13
1958Bypassing Identity-Aware Proxy - Google Cloud Vulnerability Authorization flaw Token leak OAuth Google SebLu Bug Bounty2021-12-302023-06-13
1954Fixing the Unfixable: Story of a Google Cloud SSRF SSRF Google David Schütz (@xdavidhu) Bug Bounty2021-12-312023-06-13
1881Command Injection in Google Cloud Shell RCE OS command injection Google Ademar Nowasky Junior Bug Bounty2022-01-282023-06-13
1845Insecure Bootstrap Process in Oracle Cloud CLI Supply chain attack Oracle Nightwatch Cybersecurity (@nightwatchcyber) Bug Bounty2022-02-062023-06-13
1819Advisory: Western Digital My Cloud Pro Series PR4100 RCE RCE OS command injection Western Digital Quentin Kaiser (@QKaiser) Bug Bounty2022-02-152023-06-13
1816Hunting for bugs in VMware: View Planner and vRealize Business for Cloud RCE VMware Mikhail Klyuchnikov (@__Mn1__) Bug Bounty2022-02-152023-06-13
1799Bypassing Cloudflare’s WAF! XSS WAF bypass NA Friendly (@SkeletorKeys) Bug Bounty2022-02-192023-06-13
1785Piercing the Cloud Armor - The 8KB bypass in Google Cloud Platform WAF WAF bypass Google Kloudle (@Kloudleinc) Bug Bounty2022-02-242023-06-13
1781Catching bugs in VMware: Carbon Black Cloud Workload Appliance and vRealize Operations Manager Authentication bypass RCE SSRF Path traversal VMware Egor Dimitrenko (@elk0kc) Bug Bounty2022-02-252023-06-13