Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
4896#BugBounty — How I was able to delete anyone’s account in an Online Car Rental Company CSRF Parameter tampering NA Avinash Jain (@logicbomb_1) Bug Bounty2018-01-142023-06-13
4895Hacking Facebook accounts using CSRF in Oculus-Facebook integration CSRF Meta / Facebook Josip Franjkovic (@josipfranjkovic) Bug Bounty2018-01-152023-06-13
4893#BugBounty — AWS S3 added to my “Bucket” list! AWS misconfiguration NA Avinash Jain (@logicbomb_1) Bug Bounty2018-01-162023-06-13
4884#BugBounty @ Linkedln-How I was able to bypass Open Redirection Protection Open redirect LinkedIn Avinash Jain (@logicbomb_1) Bug Bounty2018-01-242023-06-13
4882No RCE? Then SSH to the box! LFI Path traversal RCE NA Jasmin Laundry (@JR0ch17) Bug Bounty2018-01-252023-06-13
4881[Yahoo Bug Bounty] Unauthorized Access to Unisphere Management Server Debugging Facility on https://bf1-uaddbcx-002.data.bf1.yahoo.com/Debug/ Authorization flaw Yahoo! / Verizon Media Peerzada Fawaz Ahmad Qureshi Bug Bounty2018-01-252023-06-13
4880Full Account Takeover through CORS with connection Sockets CORS misconfiguration Account takeover NA Samuel (@saamux) Bug Bounty2018-01-252023-06-13
4877How I got 22000$ worth ethereum Blind XSS NA Shubham Gupta (@hackerspider1) Bug Bounty2018-01-262023-06-13
4876How I was able to Download Any file from Web server! XSS IDOR NA hammadhassan924 Bug Bounty2018-01-272023-06-13
4874How I was able to Bypass XSS Protection on HackerOne’s Private Program XSS NA Jay Jani (@JayJani007) Bug Bounty2018-02-022023-06-13
4872Hunting Insecure Direct Object Reference Vulnerabilities for Fun and Profit (PART-1) IDOR NA Mohammed Abdul Raheem (@mohdaltaf163) Bug Bounty2018-02-032023-06-13
4871#BugBounty — "I don%27t need your current password to login into your account" - How could I completely takeover any user%27s account in an online classified ads company. Authentication bypass NA Avinash Jain (@logicbomb_1) Bug Bounty2018-02-032023-06-13
4868SQL injection with load file and into outfile SQL injection NA NoGe (@p4c3n0g3) Bug Bounty2018-02-052023-06-13
4862Oracle Cross Site Scripting Vulnerability -Adesh Kolte Reflected XSS Oracle Adesh Nandkishor kolte (@AdeshKolte) Bug Bounty2018-02-102023-06-13
4861#BugBounty — “How I was able to shop for free!”- Payment Price Manipulation Parameter tampering Payment tampering NA Avinash Jain (@logicbomb_1) Bug Bounty2018-02-112023-06-13
4860An analysis of logic flaws in web-of-trust services Logic flaw Keybase EdOverflow (@EdOverflow) Bug Bounty2018-02-132023-06-13
4859$7.5k Google services mix-up Logic flaw Google Ezequiel Pereira (@epereiralopez) Bug Bounty2018-02-142023-06-13
4857#BugBounty — Exploiting CRLF Injection can lands into a nice bounty CRLF injection NA Avinash Jain (@logicbomb_1) Bug Bounty2018-02-172023-06-13
4856Exploiting CORS Miss configuration using XSS CORS misconfiguration NA Noman Shaikh (@nomanali181) Bug Bounty2018-02-182023-06-13
4847#BugBounty — API keys leakage, Source code disclosure in India’s largest e-commerce health care company. Path traversal NA Avinash Jain (@logicbomb_1) Bug Bounty2018-02-252023-06-13
4846How i Hacked into a bugcrowd. public program RCE NA Vishnuraj Bug Bounty2018-02-252023-06-13
4845Re-dressing Instagram – Leaking Application Tokens via Instagram ClickJacking Vulnerability! Clickjacking Meta / Facebook Mohamed A. Baset Bug Bounty2018-02-252023-06-13
4844The 2.5mins or 2.5k$ hawk-eye bug – A Facebook Pages Admins Disclosure Vulnerability! Information disclosure Meta / Facebook Mohamed A. Baset Bug Bounty2018-02-252023-06-13
4842#BugBounty — How I could book cab using your wallet money in India’s largest auto transportation company! OTP bypass NA Avinash Jain (@logicbomb_1) Bug Bounty2018-03-052023-06-13
4837How I hacked 74k users of a website. Authorization flaw NA Utkarsh Agrawal (@agrawalsmart7) Bug Bounty2018-03-112023-06-13