Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
3983Privilege Escalation using Api endpoint Privilege escalation NA Ronak Patel (@ronak_9889) Bug Bounty2019-08-092023-06-13
3982Read other user support tickets in https://support..com (Write Up) IDOR NA Evan Ricafort (@evanricafort) Bug Bounty2019-08-092023-06-13
3981Two Easy RCE in Atlassian Products Credential stuffing Atlassian Valeriy Shevchenko (@Krevetk0Valeriy) Bug Bounty2019-08-092023-06-13
3980Application Level Denial of Service [DoS] using SVG file in https://[REDACTED].com (Write Up) Application-level DoS NA Evan Ricafort (@evanricafort) Bug Bounty2019-08-102023-06-13
3979Clickjacking DOM XSS on Google.org Clickjacking DOM XSS Google Thomas Orlita (@ThomasOrlita) Bug Bounty2019-08-122023-06-13
3978Reporting - Amazon 1 click device XSS XSS Amazon Sneakerhax (@sneakerhax) Bug Bounty2019-08-122023-06-13
3977SSRF Vulnerability in https://app.[REDACTED].com SSRF NA Evan Ricafort (@evanricafort) Bug Bounty2019-08-132023-06-13
3975BugBounty WriteUp — take attention and get Stored XSS Stored XSS NA Oleksandr Opanasiuk (@Lekssik2) Bug Bounty2019-08-142023-06-13
3974[Business Logic] Bypassing Nickname Feature Logic flaw NA Kent Bayron / kntx (@bayronkentoy) Bug Bounty2019-08-142023-06-13
3973BookMyShow account takeover using social login OAuth Account takeover BookMyShow Sukhmeet Singh (@MadGuyyy) Bug Bounty2019-08-152023-06-13
3972Facebook Messenger exposing deleted messages using [Remove for Everyone] Logic flaw Meta / Facebook Renwa (@RenwaX23) Bug Bounty2019-08-152023-06-13
3971ByPassing fix of Domain Blocking feature in Business Manager Authorization flaw Logic flaw Meta / Facebook Rohit kumar (@rohitcoder) Bug Bounty2019-08-152023-06-13
3970How I was able to earn 1000$ with just 10 minutes of bug bounty? Password reset NA Ninad Mathpati (@ninad_mathpati) Bug Bounty2019-08-172023-06-13
3967U.S. Department of Defense - Info Disclosure and SQLi Writeup Information disclosure SQL injection U.S. Dept Of Defense Aaron Esau (@arinerron) Bug Bounty2019-08-192023-06-13
3966Facebook Bug Bounty: Reading WhatsApp contacts list without unlocking the device Authorization flaw Meta / Facebook Arvind (@ar_arv1nd) Bug Bounty2019-08-192023-06-13
3965Kaspersky in the Middle – what could possibly go wrong? Clickjacking Universal XSS MiTM Kaspersky Wladimir Palant (@WPalant) Bug Bounty2019-08-192023-06-13
3964How I upgraded my privileges to the administrator of Odnoklassniki’s url shortener Privilege escalation ok.ru Sergey Kashatov (@iframe0x01) Bug Bounty2019-08-202023-06-13
3963How I made my first $$$ from finding a bug in Facebook Authorization flaw Meta / Facebook Aayush Pokhrel (@aayushpok) Bug Bounty2019-08-212023-06-13
3962Sending Message as page being an analyst/ advertiser? Authorization flaw Meta / Facebook Baibhav Anand (@SpongeBhav) Bug Bounty2019-08-212023-06-13
3960Rights Manager Graph API Disclosure of business employee to non business employee Information disclosure Meta / Facebook Jafar Abo Nada (@Jafar_Abo_Nada) Bug Bounty2019-08-222023-06-13
3959One Bug To Rule Them All: Modern Android Password Managers and FLAG_SECURE Misuse Information disclosure Content leak 1Password Keeper Dashlane Lorenzo Stella (@lorenzostella) Bug Bounty2019-08-222023-06-13
3957From Github Recon To Account Takeover Information disclosure Account takeover NA Dipak kumar Das (@d1pakdas) Bug Bounty2019-08-242023-06-13
3955Bug Bounty: Bypassing a crappy WAF to exploit a blind SQL injection Blind SQL injection NA Robin Verton (@robinverton) Bug Bounty2019-08-252023-06-13
3954How I Hacked Instagram Again Password reset Account takeover Meta / Facebook Laxman Muthiyah (@LaxmanMuthiyah) Bug Bounty2019-08-262023-06-13
3953How i was able to exploit the same endpoint 2 times ( multiple xss & open Redirection on 10 subdomain) XSS Open redirect Sanity.io Ratnadip Gajbhiye (@scspcommunity) Bug Bounty2019-08-262023-06-13