Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
3074Automating xss identification with Dalfox & Paramspider Reflected XSS NA Paras Arora (@parasarora06) Bug Bounty2020-10-272023-06-13
30112 Reflected XSS In Razer Reflected XSS Razer Mostafa Bug Bounty2020-11-212023-06-13
3010Weird (im)possible XSS on error page Reflected XSS NA Rody Shahnazarian (@Komradz86) Bug Bounty2020-11-212023-06-13
3009Escalating XSS to Account Takeover Reflected XSS Account takeover NA Aditya Verma (@0cirius0) Bug Bounty2020-11-222023-06-13
3006Reflected Cross Site Scripting on REDACTED Program (Bounty: 750$) Reflected XSS NA can1337 (@canmustdie) Bug Bounty2020-11-232023-06-13
2989Cross Site Scripting (XSS) Reflected in one of the subdomains of “General Motors”(Bugbounty) Reflected XSS General Motors - Bug Bounty2020-12-032023-06-13
2948EN | Account Takeover via Web Cache Poisoning based Reflected XSS Reflected XSS Web cache poisoning Account takeover NA Lütfü Mert Ceylan (@lutfumertceylan) Bug Bounty2020-12-262023-06-13
2945Chaining CORS by Reflected xss to Account takeover #My first Blog CORS misconfiguration Reflected XSS Account takeover NA Santosh Kumar Sha (@killmongar1996) Bug Bounty2020-12-262023-06-13
2869Chaining a self XSS to Account Takeover Self-XSS Reflected XSS Account takeover NA Arman Sameer (@ArmanSameer95) Bug Bounty2021-01-252023-06-13
2836Redwood Report2Web XSS and Frame injection Reflected XSS Frame injection NA vict0ni (@vict0ni) Bug Bounty2021-02-042023-06-13
2830Reflected XSS on a Public Program Reflected XSS NA Naveen J (@thevillagehackr) Bug Bounty2021-02-082023-06-13
2825Self-XSS to rXSS via Uploaded File Name Self-XSS Reflected XSS NA P4nda (@InfoSecP4nda) Bug Bounty2021-02-092023-06-13
2818Hacking Chess.com and Accessing 50 Million Customer Records Reflected XSS Information disclosure Account takeover Chess.com Sam Curry (@samwcyo) Bug Bounty2021-02-112023-06-13
2726Chain of Low Level Bugs and Misconfigurations Leads to Account Takeover Reflected XSS Clickjacking Account takeover NA pleorqy (@pleorqy) Bug Bounty2021-03-102023-06-13
2683A weird XSS Reflected XSS NA gato the wizard Bug Bounty2021-03-302023-06-13
2606Reflected XSS on Microsoft Reflected XSS Microsoft N45HT Bug Bounty2021-04-252023-06-13
2526Stored XSS with two different parameters Reflected XSS NA Joel Cantu (@InfosecRintox) Bug Bounty2021-05-252023-06-13
2421Reflected XSS Through Insecure Dynamic Loading XSS NA Greg Gibson Bug Bounty2021-07-112023-06-13
2396XSS-Through-Fuzzing-Default-IIS Reflected XSS NA 0xdln (@0xdln) Bug Bounty2021-07-202023-06-13
2389How I Found Multiple Bugs On FaceBook In 1 Month And a Part For My Methodology & Tools SSTI SQL injection Authentication bypass Privilege escalation Reflected XSS Meta / Facebook Orwa Atyat (@GodfatherOrwa) Bug Bounty2021-07-232023-06-13
2383Mattermost Server v5.32 > v5.36 Reflected XSS in OAuth flow Reflected XSS OAuth Mattermost zi0Black (@zi0Black) Bug Bounty2021-07-262023-06-13
2356Tale of XSS in Angular Reflected XSS NA Sicksec (@OriginalSicksec) Bug Bounty2021-08-022023-06-13
2291Reflective XSS via search box [Bypassing Cloudflare WAF]. Reflected XSS NA Friendly (@SkeletorKeys) Bug Bounty2021-08-262023-06-13
2217Weaponizing Reflected XSS to Account Takeover XSS Account takeover NA Hassan Shahid (@pwnsauc3) Bug Bounty2021-09-162023-06-13
2073Diving into Open-source LMS Codebases Insecure file upload Insecure deserialization RCE CSRF SQL injection Reflected XSS Moodle Chamilo LMS Poh Jia Hao (@Chocologicall) Bug Bounty2021-11-162023-06-13