Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
1691Pwning Microsoft Azure Defender for IoT | Multiple Flaws Allow Remote Code Execution for All RCE Memory corruption SQL injection Microsoft Kasif Dekel (@kasifdekel) Bug Bounty2022-03-282023-06-13
1663NoSQL Injection in Plain Sight NoSQL injection NA Kuldeep Pandya (@kuldeepdotexe) Bug Bounty2022-04-042023-06-13
1661CVE-2021-38159: MOVEit Transfer SQL Injection Analysis SQL injection Palantir Public Tuan Anh Nguyen (@haxor31337) Bug Bounty2022-04-052023-06-13
1655CVE-2021-4119: [Bookstack] Email harvesting via SQL "LIKE" clause exploitation Broken Access Control SQL injection Bookstack Haxatron (@Haxatron1) Bug Bounty2022-04-052023-06-13
1647How a YouTube Video lead to pwning a web application via SQL Injection worth $4324 bounty SQL injection NA Vishal Saini (@k4k4r07) Bug Bounty2022-04-082023-06-13
1614SQL Injection in Harvard’s Subdomain SQL injection Harvard Bibek Neupane (@nb1b3k) Bug Bounty2022-04-172023-06-13
1572Advanced sqlmap Case Study SQL injection NA Peter M (@h1pmnh) Bug Bounty2022-05-062023-06-13
1540Gaining access through error-based SQLi using WebSockets SQL injection Websockets Password reset NA Bitcrack (@bitcrack_cyber) Bug Bounty2022-01-122023-06-13
1539Research: Auditing WordPress Plugins SQL injection LFI XSS RCE NA cy//ective (@cyllective) Bug Bounty2022-05-202023-06-13
1515A Simple SQL Injection in an Air Force Website SQL injection U.S. Dept Of Defense Corben Leo (@hacker_) Bug Bounty2022-05-272023-06-13
1505SQL injection to Remote Command Execution (RCE) SQL injection RCE NA Kwadwo Amoako Bug Bounty2022-05-312023-06-13
1396CVE-2022-34265 SQL injection Django Takuto Yoshikai (@TakutoYoshikai) Bug Bounty2022-07-072023-06-13
1388Advisory | GLPI Service Management Software Multiple Vulnerabilities and Remote Code Execution SQL injection RCE LFI GLPI Nuri Çilengir (@ncilengir) Bug Bounty2022-07-082023-06-13
1385Exploiting SQL Injection at Authorization token SQL injection Account takeover NA Basudev Bug Bounty2022-07-092023-06-13
1375Leveraging the SQL Injection to Execute the XSS by Evading CSP CSP bypass SQL injection XSS NA Nirmal Dahal (@TheNittam) Bug Bounty2022-07-122023-06-13
1328WordPress Transposh: Exploiting a Blind SQL Injection via XSS - RCE Security SQL injection XSS Account takeover WordPress Julien Ahrens (@MrTuxracer) Bug Bounty2022-07-222023-06-13
1284(ZOHO) Manage Engine Desktop Central – SQL Injection / Arbitrary File Write SQL injection Arbitrary file write Path traversal Zoho Tom Ellson (@tde_sec) Bug Bounty2022-08-022023-06-13
1265Dancing on the architecture of VMware Workspace ONE Access (ENG) Authentication bypass SQL injection RCE VMware Petrus Viet (@VietPetrus) Bug Bounty2022-08-092023-06-13
1204Trust Me, I’m a Robot: Can We Trust RPA With Our Most Guarded Secrets? Robotic Process Automation Insecure deserialization SQL injection MiTM Blue Prism Nimrod Stoler (@n1mr0d5) Bug Bounty2022-08-182023-06-13
1156Found SQL Injection Vulnerability on Government Organization Website! SQL injection NA mehedishakeel (@mehedishakeel) Bug Bounty2022-08-302023-06-13
1140How can i get SQL Injection SQL injection NA Mohamed Abdelhady Bug Bounty2022-09-022023-06-13
1087Blind XSS and Time-Based SQL Injection to Admin Panel Control and Database Takeover Blind XSS SQL injection NA Cyberali Bug Bounty2022-09-132023-06-13
1054TypeORM Prototype Pollution Leading To SQL Injection (CVE-2022-36531) DoS SQL injection TypeORM Norbert Szetei (@73696e65) Bug Bounty2022-09-212023-06-13
1049How I Found Multiple SQL Injections in 5 Minutes in Bug Bounty SQL injection NA Omar Hashem (@OmarHashem666) Bug Bounty2022-09-222023-06-13
996Error based SQL Injection with WAF bypass manual Exploit 100% SQL injection WAF bypass NA Ahmed Qaramany (@c0nqr0r) Bug Bounty2022-10-062023-06-13