Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
3109We Hacked Apple for 3 Months: Here’s What We Found RCE Authentication bypass Authorization bypass SSRF XXE Blind XSS IDOR OS command injection SQL injection Apple Sam Curry (@samwcyo) Bug Bounty2020-10-072023-06-13
3073Error-Based SQL Injection on a WordPress website and extract more than 150k user details SQL injection NA Ynoof Alassiri Bug Bounty2020-10-272023-06-13
3048Silver Peak Unity Orchestrator RCE RCE Authentication bypass Path traversal SQL injection Silver Peak Realmode Labs (@RealmodeLabs) Bug Bounty2020-11-082023-06-13
3036Interesting case of SQLi SQL injection NA Nikhil (niks) (@niksthehacker) Bug Bounty2020-11-132023-06-13
3026Optimizing Hunting Results in VDP for use in Bug Bounty Programs - From Sensitive Information Disclosure to Accessing Hidden APIs which can be used to Retrieve Customer Data Information disclosure Broken access control IDOR SQL injection NA YoKo Kho (@YokoAcc) Bug Bounty2020-11-152023-06-13
3012Turning Blind Error Based SQL Injection into Exploitable Boolean One SQL injection NA Ozgur Alp (@ozgur_bbh) Bug Bounty2020-11-212023-06-13
3004SD-PWN Part 4 — VMware VeloCloud — The Last Takeover RCE Authentication bypass Default credentials SQL injection Path traversal LFI VMware Realmode Labs (@RealmodeLabs) Bug Bounty2020-11-262023-06-13
3002How i got easy $$$ for SQL Injection Bug SQL injection NA Rafi Andhika Galuh Bug Bounty2020-11-262023-06-13
3001The Story of my first critical bug SQL injection NA Shellbr3ak (@0xShellbr3ak) Bug Bounty2020-11-292023-06-13
2996Exploiting Blind Postgresql Injection And Exfiltrating Data In Psycopg2 SQL injection NA Shawar Khan (@ShawarkOFFICIAL) Bug Bounty2020-11-302023-06-13
2960My Bug Bounty Journey and My First Critical Bug — Time Based Blind SQL Injection SQL injection NA Marx Chryz Bug Bounty2020-12-172023-06-13
2872Sql Injection via hidden parameter SQL injection NA Rutvik Hajare (@HajareRutvik) Bug Bounty2021-01-242023-06-13
2778Is Math.random() Safe? from missing rate limit to bypass 2fa and possible sqli Race condition Lack of rate limiting OTP bypass SQL injection NA Yasser Mohammed (@boomneroli) Bug Bounty2021-02-202023-06-13
2754Admin Panel Accessed Via SQL Injection… (Ezy Boooom…😅) SQL injection NA Ratnadip Gajbhiye (@scspcommunity) Bug Bounty2021-02-282023-06-13
2720How I Found Sql Injection on 8x8 , Cengage,Comodo,Automattic,20 company SQL injection Automattic IBM 8x8 Ahmad A Abdulla (@lu3ky13) Bug Bounty2021-03-122023-06-13
2639Fun sql injection — mod_security bypass SQL injection NA _Y000_ (@_Y000_) Bug Bounty2021-04-162023-06-13
2577How I Found Sql Injection on intensedebate.com (h1) in 5 minute $350 SQL injection Automattic Ahmad A Abdulla (@lu3ky13) Bug Bounty2021-05-052023-06-13
2553MSSQL Injection In JSON Request SQL injection NA Kailash (@Corrupted_brain) Bug Bounty2021-05-162023-06-13
2543Time-Based SQL Injection to Dumping the Database SQL injection Android NA Naveen J (@thevillagehackr) Bug Bounty2021-05-192023-06-13
2522Hey WAF! Better Luck Next Time! 👽 SQL injection NA Akash Rox Starz Bug Bounty2021-05-282023-06-13
2410How I found Blind SQL Injection just by browsing and getting a unique URL SQL injection NA Jawad Mahdi (@hunter0x1) Bug Bounty2021-07-142023-06-13
2389How I Found Multiple Bugs On FaceBook In 1 Month And a Part For My Methodology & Tools SSTI SQL injection Authentication bypass Privilege escalation Reflected XSS Meta / Facebook Orwa Atyat (@GodfatherOrwa) Bug Bounty2021-07-232023-06-13
2285SSRF External Service Interaction for Find Real IP CloudFlare and Leads to SQL Injection WAF bypass SSRF SQL injection NA Caesar Evan Santoso Bug Bounty2021-08-282023-06-13
2274CVE-2021-39165: A Bug Bounty Journey from a Laravel SQL Injection Vulnerability SQL injection NA Xuan Tuyen Bug Bounty2021-08-302023-06-13
2268SQL injection in harvard subdomain SQL injection Harvard University Brandon Roldan (@tomorrowisnew_) Bug Bounty2021-09-012023-06-13