Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
1606Open Redirection into Bentley System XSS Bentley Systems Amit Kumar (@Amitlt2) Bug Bounty2022-04-212023-06-13
1605Smashing the Modern Web Tech Stack — Part 1: The Evolving Threat Landscape in 2022 and DOM-based XSS in Cloud-Native React Apps. Open redirect XSS NA MalwareJoe Bug Bounty2022-04-212023-06-13
1519How an Open Redirection Leads to an Account Takeover? Open redirect Account takeover NA Mahendra Purbia (@Mah3Sec_) Bug Bounty2022-05-262023-06-13
1506From open redirect to RCE in one week Open redirect SSRF Insecure deserialization LFI RCE Mail.ru byq (@ByQwert) Bug Bounty2022-05-312023-06-13
1404A swag for a Open Redirect — Google Dork — Bug Bounty Open redirect NA Proviesec (@proviesec) Bug Bounty2022-07-022023-06-13
1397How I found Open redirect on Bug crowd public program in 2 day Open redirect NA Ittipatjitrada (@IttipatJitrada) Bug Bounty2022-07-062023-06-13
1393How I find open redirect in Facebook Open redirect Brave Software Abhinav Kumar (@abhinavsecond) Bug Bounty2022-07-072023-06-13
1369From Open Redirect to Reflected XSS manually Open redirect Reflected XSS NA Rodric Bug Bounty2022-07-142023-06-13
1344How i was able to bypass Open Redirect 3 times on same program. Open redirect NA himanshu pdy (@himanshu_pdy) Bug Bounty2022-07-192023-06-13
1267Simple Open Redirect Bypass. Open redirect NA Harshad Gaikwad (@h4rsh4d) Bug Bounty2022-08-092023-06-13
1262Security Implications of URL Parsing Differentials Open redirect URL parsing differentials bug URL parsing issue Thomas Chauchefoin (@swapgs) Security Implications of URL Parsing Differentials Bug Bounty2022-08-092023-06-13
1248My Experience on Hacking the Dutch Government XSS Open redirect CSRF Account takeover Dutch Government Jefferson Gonzales (@gonzxph) Bug Bounty2022-08-112023-06-13
1233Escalating Open Redirect to XSS Open redirect XSS NA Sagar Sajeev (@Sagar__Sajeev) Bug Bounty2022-08-132023-06-13
1217Open Redirect at Nvidia Open redirect Nvidia Mohamed Abdelhady Bug Bounty2022-08-162023-06-13
1198Never underestimate the power of open redirect, a story of a full account takeover Open redirect Account takeover Token leak NA Ibrahim Auwal (@ibrahimatix0x01) Bug Bounty2022-08-202023-06-13
1052Exploiting Web3’s Hidden Attack Surface: Universal XSS on Netlify’s Next.js Library Universal XSS SSRF Open redirect Web cache poisoning Netlify Gemini PancakeSwap Docusign Moonpay Celo Sam Curry (@samwcyo) Bug Bounty2022-09-212023-06-13
1045My First XSS Open redirect XSS NA Avyukt Syrine (@AvyuktSyrine) Bug Bounty2022-09-232023-06-13
993Mr. Robot: Self Xss from Informative to high 1200$ ,csrf, open redirect,self xss to stored Self-XSS CSRF NA Ahmad A Abdulla (@lu3ky13) Bug Bounty2022-10-062023-06-13
865Practical Client Side Path Traversal Attacks Path traversal Client-side Path Traversal Open redirect CSS injection Acronis Medi (@medi_0ne) Bug Bounty2022-11-042023-06-13
654Bypass Apple’s redirection process with the dot (“.”) character Open redirect Apple can1337 (@canmustdie) Bug Bounty2022-12-242023-06-13
598Client-Side SSRF to Google Cloud Project Takeover [Google VRP] SSRF CSRF Open redirect Google Dohyun Lee Bug Bounty2023-01-122023-06-13
480Chaining Bugs to get my First Bug Bounty CSRF Open redirect Clickjacking Account takeover NA ag3n7 (@ag3n7apk) Bug Bounty2023-02-082023-06-13
398draw.io CVEs SSRF OAuth Open redirect Token leak Security code review draw.io @caioluders Bug Bounty2023-02-242023-06-13
366Traveling with OAuth - Account Takeover on Booking.com OAuth Account takeover Authentication bypass Open redirect Booking.com KAYAK Aviad Carmel (@AviadCarmel) Bug Bounty2023-03-022023-06-13
357GitHub Security Lab audited DataHub: Here’s what they found SSRF Insecure deserialization Cypher injection Authentication bypass Authorization bypass XSS Open redirect JWT JSON injection Cryptographic issues Session expiration issue Security code review DataHub Alvaro Muñoz (@pwntester) Bug Bounty2023-03-032023-06-13