Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
3479How I was able to make users loss of money on Google Pay Clickjacking Google santuySec (@santuySec) Bug Bounty2020-05-162023-06-13
3448How I was able to see Private Video Uploader Via Facebook Rights Manager.[Responsible Disclosure] Information disclosure Meta / Facebook Kishore TK (@kishoretk_off) Bug Bounty2020-05-282023-06-13
3429Double URL-encoded XSS Reflected XSS NA vict0ni (@vict0ni) Bug Bounty2020-06-022023-06-13
3387All *.intercom.help subdomains vulnerable to Subdomain Takeover from intercom Service Subdomain takeover Intercom Mohamed Haron (@m7mdharon) Bug Bounty2020-06-162023-06-13
3386How I was able to buy t-shirt for €1 — Payment Price Manipulation Payment tampering NA Muztahidul Tanim (@TheMuztahidul) Bug Bounty2020-06-162023-06-13
3372How i was able to chain bugs and gain access to internal okta instance Missing authentication NA Mmohammed Eldeeb (@malcolmx0x) Bug Bounty2020-06-222023-06-13
3360How I was able to take over any account via the Password Reset Functionality. Password reset Account takeover NA Firas Fatnassi (@Fatnass1F1ras) Bug Bounty2020-06-282023-06-13
3327How i was able to bypass Email Confirm — P4 Information disclosure NA Mohammed Ehssan (@alone_Wwolf) Bug Bounty2020-07-062023-06-13
3311How I was able to change victim’s password using IDN Homograph Attack IDN homograph attack NA Abhishek Karle (@AbhishekKarle3) Bug Bounty2020-07-112023-06-13
3302I am able to see user’s sensitive data through JSON file. Information disclosure Authorization flaw NA Saurabh siddharam sanmane (@saurabhsanmane2) Bug Bounty2020-07-172023-06-13
3279An unreproducable bug due to the load balancer, an unusual Open Redirect bug Open redirect NA tololovejoi (@tolo7010) Bug Bounty2020-07-272023-06-13
3249How I was able to do Mass Account Takeover[Bug Bounty] Account takeover Password reset NA Not Rickyy (@RickyyNot) Bug Bounty2020-08-052023-06-13
3230Group Admin Can’t Able to Moderate Comments When Posted Through Page : Facebook Bug Bounty 2020 Logic flaw Meta / Facebook Prakash Panta (@Prakashpanta268) Bug Bounty2020-08-112023-06-13
3229How I was able to find page/personal account disclosure on Instagram Information disclosure Meta / Facebook Ajay Gautam (@evilboyajay) Bug Bounty2020-08-112023-06-13
3215How I was able to send Authentic Emails as others — Google VRP [Resolved] Logic flaw HTML injection Email spoofing Open mail relay Google Sriram Kesavan (@sriramoffcl) Bug Bounty2020-08-152023-06-13
3214Disclosing wifi password via content provider injection in Xiaomi Content provider injection Vulnerable Android content provider Android Xiaomi Vishwaraj Bhattrai (@vishwaraj101) Bug Bounty2020-08-162023-06-13
3195How I was able to find easy P1 just by doing Recon LFI NA Kirtan Patel (@kirtanpatel9111) Bug Bounty2020-08-222023-06-13
3175How_i_was_able_to_pawned_website_via_escilating_webcache deception to rce Web cache deception SSRF RCE NA mohit (@mohit29295572) Bug Bounty2020-09-052023-06-13
3162SQL Injection & Remote Code Execution - Double P1 SQL injection RCE NA Shrey Shah (@ShreySh43332033) Bug Bounty2020-09-132023-06-13
3142suPHP - The vulnerable ghost in your shell Local Privilege Escalation NA Maxime (@punkeel) Bug Bounty2020-09-212023-06-13
3141suPHP - The vulnerable ghost in your shell🎯Business Logic Flaw in Google Acquisition! (Hall Of Fame)🎯 Logic flaw Google Ritesh Gohil (@RiteshG37659480) Bug Bounty2020-09-212023-06-13
3139#Bugbounty- “How I was able to see other users Payments in a travel application” — IDOR #800$ IDOR Information disclosure NA ganiganesh (@ganiganeshss79) Bug Bounty2020-09-222023-06-13
3068Wormable remote code execution in Alien Swarm RCE Valve mev Bug Bounty2020-10-302023-06-13
3034Smuggling an (Un)exploitable XSS HTTP Request Smuggling XSS NA Julien Ahrens (@MrTuxracer) Bug Bounty2020-11-132023-06-13
3032Theoretically Possible To Practical Account Takeover IDOR Account takeover NA Mukul Lohar (@ironfisto) Bug Bounty2020-11-142023-06-13