| 4254 | My First Stored XSS on Edmodo.com |
Stored XSS |
Edmodo |
ZishanAdThandar (@ZishanAdThandar) |
Bug Bounty | 2019-03-13 | 2023-06-13 |
| 4253 | OLX Bug Bounty: Reflected XSS |
Reflected XSS |
OLX |
Mukhammad Akbar (@abaykandotcom) |
Bug Bounty | 2019-03-13 | 2023-06-13 |
| 4252 | WordPress 5.1 CSRF to Remote Code Execution |
CSRF
RCE
HTML injection |
WordPress |
Simon Scannell (@scannell_simon) |
Bug Bounty | 2019-03-13 | 2023-06-13 |
| 4251 | Write up – $1,000 usd in 5 minutes, xss stored in outlook.com (ios browsers) |
Stored XSS |
Microsoft |
Omar Espino (@omespino) |
Bug Bounty | 2019-03-14 | 2023-06-13 |
| 4250 | User Account Takeover [Password Change]— Nice Catch! |
Account takeover
Password reset |
NA |
Rohit kumar (@rohitcoder) |
Bug Bounty | 2019-03-14 | 2023-06-13 |
| 4249 | Privilege escalation on private program. |
Privilege escalation
Information disclosure |
NA |
Imran Parray (@imranparray101) |
Bug Bounty | 2019-03-14 | 2023-06-13 |
| 4248 | How I was able to pwned 30000+ user’s webhook |
IDOR |
NA |
gujjuboy10x00 (@vis_hacker) |
Bug Bounty | 2019-03-14 | 2023-06-13 |
| 4247 | Target Finds Cross-Site Scripting in Microsoft SharePoint |
XSS |
Microsoft |
Target |
Bug Bounty | 2019-03-15 | 2023-06-13 |
| 4246 | Disclosure of Pending Roles for any Facebook Page |
IDOR |
Meta / Facebook |
Avinash Kumar (@itsavinash_) |
Bug Bounty | 2019-03-16 | 2023-06-13 |
| 4245 | Should you be concerned about LastPass uploading your passwords to its server? |
Information disclosure
Logic flaw |
LastPass |
Wladimir Palant (@WPalant) |
Bug Bounty | 2019-03-18 | 2023-06-13 |
| 4244 | From http:// domain to res:// domain xss by using IE Adobe’s PDF ActiveX plugin |
DOM XSS |
Microsoft |
Heige (@80vul) |
Bug Bounty | 2019-03-19 | 2023-06-13 |
| 4243 | DoS Across Facebook Endpoints |
DoS |
Meta / Facebook |
Max Pasqua |
Bug Bounty | 2019-03-19 | 2023-06-13 |
| 4242 | Discovering a zero day and getting code execution on Mozilla%27s AWS Network |
RCE |
Mozilla |
Shubham Shah (@infosec_au) |
Bug Bounty | 2019-03-19 | 2023-06-13 |
| 4241 | Facebook Fizz integer overflow vulnerability (CVE-2019-3560) |
Integer overflow
Memory corruption |
Meta / Facebook |
Kevin Backhouse (@kevin_backhouse) |
Bug Bounty | 2019-03-19 | 2023-06-13 |
| 4240 | Slack announcement-only channel post restriction bypass |
Authorization flaw
Logic flaw |
Slack |
Rodney Beede |
Bug Bounty | 2019-03-20 | 2023-06-13 |
| 4239 | A real XSS in OLX Bug Bounty |
Reflected XSS |
OLX |
Paulo Choupina (@PauloChoupina) |
Bug Bounty | 2019-03-21 | 2023-06-13 |
| 4238 | How to hunt for Malvertising ads on Android |
Android |
NA |
Kyle (@B3nac) |
Bug Bounty | 2019-03-21 | 2023-06-13 |
| 4237 | Google Books X-Hacking |
XS-Search |
Google |
Terjanq (@terjanq) |
Bug Bounty | 2019-03-21 | 2023-06-13 |
| 4235 | Twitter Denial of Service bug or How i could prevent all followers from reading or accessing literally ANY tweets! |
DoS |
Twitter |
Seif Elsallamy (@seifelsallamy) |
Bug Bounty | 2019-03-25 | 2023-06-13 |
| 4234 | An Unusual Bug 🐛 on Braintree [PayPal] |
DoS |
Paypal |
PRince CHaddha (@princechaddha) |
Bug Bounty | 2019-03-25 | 2023-06-13 |
| 4233 | How I could have hijacked a victim’s YouTube notifications! (Google VRP Writeup) |
CSRF |
Google |
Yash Sodha (@y_sodha) |
Bug Bounty | 2019-03-26 | 2023-06-13 |
| 4232 | My very first bug: a dreaded dupe and then an IDOR jackpot! |
IDOR |
Yahoo! / Verizon Media |
John H4X00R (@JohnH4X00R) |
Bug Bounty | 2019-03-28 | 2023-06-13 |
| 4230 | How I was able to turn self xss into reflected xss |
Reflected XSS |
NA |
Hein Thant Zin (@H3Lowr) |
Bug Bounty | 2019-03-31 | 2023-06-13 |
| 4228 | Comma is forbidden! No worries!! Inject in insert/update queries without it |
SQL injection |
NA |
Ahmed Sultan (@0x4148) |
Bug Bounty | 2019-03-31 | 2023-06-13 |
| 4227 | EdM0d0 IDOR Vulnerabilities |
IDOR |
Edmodo |
Pratyush Anjan Sarangi |
Bug Bounty | 2019-04-01 | 2023-06-13 |
