Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
511CentreStack Disclosure Authentication bypass Password reset Unrestricted file upload RCE Gladinet (CentreStack) Michael Rand Bug Bounty2023-02-022023-06-13
469Disabling js for the win Unrestricted file upload RCE NA Vuk Ivanovic Bug Bounty2023-02-102023-06-13
461Zip bomb attack Zip bomb DoS Unrestricted file upload NA Ramkumar Nadar Bug Bounty2023-02-122023-06-13
390The Tale of a Command Injection by Changing the Logo RCE OS command injection Unrestricted file upload Directory listing HTTP response manipulation NA 0xrz (@omidxrz) Bug Bounty2023-02-262023-06-13
239Bug Bounty: como encontrei o bug Unrestricted File Upload Unrestricted file upload NA Paulo Mota Bug Bounty2023-04-022023-06-13
143Exploiting an Order of Operations Bug to Achieve RCE in Oracle Opera RCE Unrestricted file upload Path traversal Security code review Oracle (Opera) Shubham Shah (@infosec_au) Bug Bounty2023-04-302023-06-13
138Apache Solr 8.3.1 RCE from exposed administration interface RCE Unrestricted file upload XSLT injection Path traversal Apache Solr Nicolas Brunner Bug Bounty2023-05-012023-06-13
123When Good APIs Go Bad: Uncovering 3 Azure API Management Vulnerabilities SSRF Unrestricted file upload Path traversal Cloud Microsoft (Azure) Liv Matan (@terminatorLM) Bug Bounty2023-05-042023-06-13
114How a simple Directory Listing leads to PII Data Leakage, Remote Code Execution and many more vulnerabilities on a HR management subdomain RCE Unrestricted file upload Stored XSS Information disclosure Directory listing NA Aayush Vishnoi (@AayushVishnoi10) Bug Bounty2023-05-072023-06-13
110A deep-dive on Pluck CMS vulnerability CVE-2023-25828 Unrestricted file upload RCE Security code review Pluck CMS Matthew Hogg Bug Bounty2023-05-082023-06-13