Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
4376Facebook Android Application Authorization flaw Meta / Facebook Ashley King (@AshleyKingUK) Bug Bounty2019-01-052023-06-13
4375How I hacked Altervista.org Open redirect Altervista Jacopo Tediosi (@jacopotediosi) Bug Bounty2019-01-052023-06-13
4374Stored XSS Via Alternate Text At Zendesk Support Stored XSS Zendesk Hariharan.s (@DJHARIZ1) Bug Bounty2019-01-062023-06-13
4373Reflected XSS ON ASUS. Reflected XSS Asus Thejus Krishnan Bug Bounty2019-01-062023-06-13
4372When Cookie Hijacking + HTML Injection become dangerous Cookie hijacking HTML injection NA Daniel V. (@d4niel_v) Bug Bounty2019-01-072023-06-13
4371Tips for bug bounty beginners from a real life experience XSS SQL injection YNAB Renaud Martinet (@karouf) Bug Bounty2019-01-082023-06-13
4369Facebook PageAnalyst Could Add oneself as Moderator on Group Authorization flaw Meta / Facebook onehackzero Bug Bounty2019-01-112023-06-13
4368Workplace Logo ID to workplace owner name Disclosure Facebook Bug Bounty IDOR Meta / Facebook Ajay Gautam (@evilboyajay) Bug Bounty2019-01-112023-06-13
4367Turning Self XSS to good XSS via access control Stored XSS Self-XSS NA Yusuf Yazir (@Hacklad) Bug Bounty2019-01-132023-06-13
4366Gaining access to Uber%27s user data through AMPScript evaluation AMPScript injection Uber Shubham Shah (@infosec_au) Bug Bounty2019-01-142023-06-13
4365Abusing MySQL clients to get LFI from the server/client LFI NA Jarkko Vesiluoma (@jvesiluoma) Bug Bounty2019-01-152023-06-13
4364#BugBounty How I Hack Billion $ Company Directory listing NA Sadiq West Bug Bounty2019-01-152023-06-13
4363Facebook Vulnerability: Unremovable facebook group admin Logic flaw Meta / Facebook Ritish Kumar Singh Bug Bounty2019-01-152023-06-13
4362Command Injection PoC OS command injection NA NoGe (@p4c3n0g3) Bug Bounty2019-01-152023-06-13
4361Bypass Content Security Policy framing restriction rule - OLX CSP bypass OLX Taha Ibrahim Draidia Bug Bounty2019-01-172023-06-13
4360XSS Through SWF file! Flash XSS NA Friendly (@SkeletorKeys) Bug Bounty2019-01-182023-06-13
4359Oauth Misconfiguration lead to complete account takeover CSRF OAuth Account takeover NA Jackson kv (@Jacksonkv22) Bug Bounty2019-01-202023-06-13
4358A Simple CORS Misconfig Leaked Private Post Of Twitter, Facebook & Instagram CORS misconfiguration NA Rohan aggarwal (@nahoragg) Bug Bounty2019-01-202023-06-13
4357Reflected XSS in Zomato Reflected XSS Zomato Sudhanshu Rajbhar (@sudhanshur705) Bug Bounty2019-01-212023-06-13
4345Frappé Technologies ERPNext Server Side Template Injection SSTI ERPNext Brian Hyde (@0xHyde) Bug Bounty2019-01-232023-06-13
4343Antihack.me Blind XSS To PHP File Upload Vulnerability Blind XSS AntiHack.me SayCure (@SaycureIO) Bug Bounty2019-01-242023-06-13
4342Magento – RCE & Local File Read with low privilege admin rights LFI RCE Path traversal Magento Daniel Le Gall (@Blaklis_) Bug Bounty2019-01-242023-06-13
4341How I abused 2FA to maintain persistence after a password change (Google, Microsoft, Instagram, Cloudflare, etc) Logic flaw Authentication flaw Google Microsoft Meta / Facebook Luke Berner Bug Bounty2019-01-252023-06-13
4340Facebook Change Product Availability as a PageAnalyst Logic flaw Authorization flaw Meta / Facebook onehackzero Bug Bounty2019-01-252023-06-13
4339AntiHack IDOR on Create Submission IDOR AntiHack.me Syahrul Akbar Rohmani (@sahruldotid) Bug Bounty2019-01-262023-06-13