Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
3462RCE in Google Cloud Deployment Manager SSRF RCE Google Ezequiel Pereira (@epereiralopez) Bug Bounty2020-05-212023-06-13
3457How dangerous is Request Splitting, a vulnerability in Golang or how we found the RCE in Portainer and hacked Uber HTTP request splitting SSRF CRLF injection RCE Uber Andrey Abakumov (@andrewaeva) Bug Bounty2020-05-252023-06-13
3443My Expense Report resulted in a Server-Side Request Forgery (SSRF) on Lyft SSRF Lyft Ben Sadeghipour (@nahamsec) Bug Bounty2020-05-292023-06-13
3433How I made $31500 by submitting a bug to Facebook SSRF Meta / Facebook Bipin Jitiya (@win3zz) Bug Bounty2020-05-312023-06-13
3430When it’s not only about a Kubernetes CVE… SSRF Microsoft Reever Zax (@ReeverZax) Bug Bounty2020-06-022023-06-13
3370Leveraging an SSRF to leak a secret API key SSRF NA Julien Cretel (@jub0bs) Bug Bounty2020-06-222023-06-13
3369A tale of my first ever full SSRF bug SSRF NA Jadek Mark (@mase289) Bug Bounty2020-06-222023-06-13
3346Story of a 2.5k Bounty — SSRF on Zimbra Led to Dump All Credentials in Clear Text SSRF Cafebazaar Yashar Shahinzadeh (@YShahinzadeh) Bug Bounty2020-07-022023-06-13
3340Bug bounty write-up: From SSRF to $4000 SSRF RCE NA thehackerish (@thehackerish) Bug Bounty2020-07-032023-06-13
3330My First Bug: Blind SSRF Through Profile Picture Upload SSRF NA swaysthinking (@swaysThinking) Bug Bounty2020-07-052023-06-13
3326From . in regex to SSRF — part 3 SSRF CRLF injection NA Niemiec Marcin (@xvnpw) Bug Bounty2020-07-072023-06-13
3307SSRF in import file function SSRF NA Rafael Silva Bug Bounty2020-07-142023-06-13
3258CVE-2020-13379 Unauthenticated Full-Read SSRF in Grafana SSRF Open redirect NA Justin Gardner (@Rhynorater) Bug Bounty2020-08-012023-06-13
3175How_i_was_able_to_pawned_website_via_escilating_webcache deception to rce Web cache deception SSRF RCE NA mohit (@mohit29295572) Bug Bounty2020-09-052023-06-13
3163How I hacked redbus [An online bus-ticketing application] LFI SSRF redBus Sangeetha Rajesh S (@rajesh_sangi12) Bug Bounty2020-09-122023-06-13
3116Watch your requests! Open redirect to a complete account takeover Path traversal Open redirect SSRF Account takeover NA Suraj Disoja (@ninetyn1ne_) Bug Bounty2020-10-052023-06-13
3109We Hacked Apple for 3 Months: Here’s What We Found RCE Authentication bypass Authorization bypass SSRF XXE Blind XSS IDOR OS command injection SQL injection Apple Sam Curry (@samwcyo) Bug Bounty2020-10-072023-06-13
3097Blind SSRF - The Hide & Seek Game Blind SSRF NA Shrey Shah (@ShreySh43332033) Bug Bounty2020-10-132023-06-13
3084IBM Datapower Exploit CVE-2020-5014 SSRF HTTP Request Smuggling IBM Thomas Cope Bug Bounty2020-10-212023-06-13
3044SSRF (Server Side Request Forgery) worth $4,913 | My Highest Bounty Ever ! SSRF Dropbox Sayaan Alam (@ehsayaan) Bug Bounty2020-11-102023-06-13
304331k$ SSRF in Google Cloud Monitoring led to metadata exposure SSRF Google David Nechuta (@david_nechuta) Bug Bounty2020-11-102023-06-13
3019Tale of 3 vulnerabilities to account takeover! SSRF Account takeover NA Avinash Jain (@logicbomb_1) Bug Bounty2020-11-172023-06-13
3013Exploiting dynamic rendering engines to take control of web apps SSRF Open redirect NA Vasilii Ermilov (@ermil0v) Bug Bounty2020-11-192023-06-13
3007SD-PWN — Part 3 — Cisco vManage — Another Day, Another Network Takeover RCE SSRF Arbitrary file write Path traversal OS command injection Local Privilege Escalation Cisco Realmode Labs (@RealmodeLabs) Bug Bounty2020-11-232023-06-13
2998WonderCMS 3.1.3 - Authenticated RCE & Blind SSRF Vulnerability Blind SSRF RCE WonderCMS Mas Zet (@zetc0de) Bug Bounty2020-11-292023-06-13