Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
2262SQL injection in harvard subdomain XSS SQL injection Harvard University Brandon Roldan (@tomorrowisnew_) Bug Bounty2021-09-022023-06-13
2143How I Escalated a Time-Based SQL Injection to RCE SQL injection RCE Sony JM Sanchez / 0xEchidonut (@jmrcsnchz) Bug Bounty2021-10-172023-06-13
2139A Scientific Notation Bug in MySQL left AWS WAF Clients Vulnerable to SQL Injection SQL injection WAF bypass AWS Marc Olivier Bergeron Bug Bounty2021-10-192023-06-13
2131How i Got 3 SQL injection in just 10 minutes. SQL injection NA Ahmed Fatouh (@XDev05) Bug Bounty2021-10-232023-06-13
2096How I Found multiple SQL Injection with FFUF and Sqlmap in a few minutes SQL injection NA Mahmoud Youssef (@0xmahmoudjo0) Bug Bounty2021-11-072023-06-13
2073Diving into Open-source LMS Codebases Insecure file upload Insecure deserialization RCE CSRF SQL injection Reflected XSS Moodle Chamilo LMS Poh Jia Hao (@Chocologicall) Bug Bounty2021-11-162023-06-13
2056Moodle Blind SQL injection via MNet authentication SQL injection Moodle rekter0 (@rekter0) Bug Bounty2021-11-232023-06-13
2032Easy SQLi in Amazon subsidiary using Sqlmap SQL injection Amazon Mostafa Mamdoh Bug Bounty2021-12-012023-06-13
1999How I Bypassed Incapsula WAF By Imperva SQL injection NA Dawood Ikhlaq Bug Bounty2021-12-142023-06-13
1942SQL Injection - The File Upload Playground Unrestricted file upload SQL injection NA Jerry Shah (@Jerry) Bug Bounty2022-01-042023-06-13
1924Pwning the portal: from database dump to session hijacking SQL injection XSS CSRF NA Bitcrack (@bitcrack_cyber) Bug Bounty2022-01-122023-06-13
1917120 Days of High Frequency Hunting SSRF LFI Information disclosure Broken Access Control Authentication bypass XSS SQL injection NA Kuldeep Pandya (@kuldeepdotexe) Bug Bounty2022-01-152023-06-13
1916Moodle: Blind SQL Injection (CVE-2021-36393) and Broken Access Control (CVE-2021-36397) SQL injection Broken Access Control Moodle 0xkasper (@0xkasper) Bug Bounty2022-01-152023-06-13
1908CVE-2022-21661: Exposing Database Info Via Wordpress SQL Injection SQL injection WordPress ngocnb Bug Bounty2022-01-182023-06-13
1901120 Days of Frequent Hacking SSRF LFI Information disclosure XSS SQL injection NA Kuldeep Pandya (@kuldeepdotexe) Bug Bounty2022-01-212023-06-13
1857A technique to semi-automatically find vulnerabilities in WordPress plugins XSS SQL injection Open redirect CSRF NA kazet (@kazet1234) Bug Bounty2022-02-032023-06-13
1848How I found a critical P1 bug in 5 minutes using a cellphone — Bug Bounty SQL injection NA Mr Empy (@mr_empy) Bug Bounty2022-02-062023-06-13
1840SQL Injection, Reflected XSS and Information Disclosure in one subdomain in just 10 minutes SQL injection XSS Information disclosure NA Mahmoud Hamed (@7odamo_) Bug Bounty2022-02-082023-06-13
1820BigQuery SQL Injection Cheat Sheet SQL injection NA Ozgur Alp (@ozgur_bbh) Bug Bounty2022-02-142023-06-13
1810CVE-2022-0478 - WooCommerce Event-Manager Plugin SQL Injection SQL injection Security code review Automattic (WooCommerce) Castilho (@castilho101) Bug Bounty2022-02-162023-06-13
1793Finding an unseen SQL Injection by bypassing escape functions in mysqljs/mysql SQL injection Oracle (MySQL) stypr (@stereotype32) Bug Bounty2022-02-212023-06-13
1786How I Hacked the Dutch Government with SQLi and Won the Famous T-Shirt? SQL injection Dutch Government Göktuğ Kaya (@g0ktugkaya) Bug Bounty2022-02-242023-06-13
1768Moodle 2nd Order Sqli SQL injection Moodle mufinnnnnnn (@mufinnnnnnn) Bug Bounty2022-03-022023-06-13
1736SQL Injection at Spotify SQL injection Spotify Eslam Akl (@eslam3kll) Bug Bounty2022-03-142023-06-13
1721My First Blind SQL Injection SQL injection NA T VAMSHI Bug Bounty2022-03-172023-06-13