Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
4095Using Burp Suite match and replace settings to escalate your user privileges and find hidden features Client-side enforcement of server-side security New Relic Jon Bottarini (@jon_bottarini) Bug Bounty2019-06-172023-06-13
4085About a Sucuri RCE...and How Not to Handle Bug Bounty Reports RCE Sucuri Julien Ahrens (@MrTuxracer) Bug Bounty2019-06-202023-06-13
4077F5 Networks Endpoint Inspector – Browser-to-RCE? RCE F5 Dave U. Ramdon Bug Bounty2019-06-262023-06-13
4070Nuget/Squirrel uncontrolled endpoints leads to arbitrary code execution RCE Microsoft Reegun J (@reegun21) Bug Bounty2019-06-282023-06-13
4049Story of my Biggest Bounty ever : Command Execution on Jenkins RCE Exposed Jenkins instance NA Jay Jani (@JayJani007) Bug Bounty2019-07-112023-06-13
4002RCE in Ruby using Mustache Templates RCE NA Rhys Elsmore (@rhyselsmore) Bug Bounty2019-08-012023-06-13
3981Two Easy RCE in Atlassian Products Credential stuffing Atlassian Valeriy Shevchenko (@Krevetk0Valeriy) Bug Bounty2019-08-092023-06-13
3952Private bug bounty $$,$$$ USD: “RCE as root on Marathon-Mesos instance” RCE NA Omar Espino (@omespino) Bug Bounty2019-08-272023-06-13
3944RCE using Path Traversal RCE Path traversal NA inc0gbyt3 (@incogbyte) Bug Bounty2019-09-022023-06-13
3942Exposed Jenkins to RCE on 8 Adobe Experience Managers RCE Exposed Jenkins instance NA Corben Leo (@hacker_) Bug Bounty2019-09-042023-06-13
3934Oculus identity verification bypass through brute-force OTP bypass Lack of rate limiting Meta / Facebook karthik kumar reddy (@karthiksunny007) Bug Bounty2019-09-092023-06-13
3925Exploiting File Uploads Pt. 2 – A Tale of a $3k worth RCE. Unrestricted file upload RCE NA HackerOn2Wheels (@HackerOn2Wheels) Bug Bounty2019-09-132023-06-13
3920Race Condition that could Result to RCE - (A story with an App that temporary stored an uploaded file within 2 seconds before moving it to Amazon S3) Race condition RCE Unrestricted file upload NA YoKo Kho (@YokoAcc) Bug Bounty2019-09-142023-06-13
3915RCE with Flask Jinja Template Injection SSTI RCE NA AkShAy KaTkAr (@AkShAy KaTkAr) Bug Bounty2019-09-172023-06-13
3905[Bug Bounty] Exploiting Cookie Based XSS by Finding RCE Information disclosure SQL injection Authentication bypass Unrestricted file upload RCE XSS NA Tomi (@noobe_io) Bug Bounty2019-09-222023-06-13
3893How to get RCE on AEM instance without Java knowledge RCE NA byq (@ByQwert) Bug Bounty2019-10-012023-06-13
3892How a double-free bug in WhatsApp turns to RCE Memory corruption RCE Android Meta / Facebook Awakened Bug Bounty2019-10-022023-06-13
3888From Multiple IDORs leading to Code Execution on a different Host Container IDOR RCE NA Rahul (@Rahul_R95) Bug Bounty2019-10-042023-06-13
3887How “Recon” helped Samsung protect their production repositories of SamsungTv, eCommerce / eStores Information disclosure Samsung Prateek Tiwari Bug Bounty2019-10-052023-06-13
3878How I found RCE But Got Duplicated Unrestricted file upload RCE NA Smile Hacker Bug Bounty2019-10-152023-06-13
3874Hunting for bounties antihack.me case study RCE XSS Logic flaw Information disclosure AntiHack.me 0xSha (@0xsha) Bug Bounty2019-10-202023-06-13
3861How I hacked 50+ Companies in 6 hrs SSTI RCE NA Vignesh C (@pwn_r00t) Bug Bounty2019-10-292023-06-13
3846BugBounty: How I Cracked 2FA (Two-Factor Authentication) with Simple Factor Brute-force !!! 😎 MFA bypass Lack of rate limiting NA Akash Agrawal (@akashmagrawal) Bug Bounty2019-11-082023-06-13
3816Disable Any Unconfirmed Account in Facebook Bruteforce Meta / Facebook Lokesh Kumar (@lokeshdlk77) Bug Bounty2019-11-212023-06-13
3802My first RCE: a tale of good ideas and good friends RCE ImageTragick NA rez0 (@rez0__) Bug Bounty2019-11-292023-06-13