Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
548Exploiting Hardcoded Keys to achieve RCE in Yellowfin BI RCE Authentication bypass Security code review JWT Yellowfin BI Maxwell Garrett (@TheGrandPew) Bug Bounty2023-01-242023-06-13
539How I Found My First Bug in Android App Android Authentication bypass Insecure intent NA Barath Stalin Bug Bounty2023-01-262023-06-13
511CentreStack Disclosure Authentication bypass Password reset Unrestricted file upload RCE Gladinet (CentreStack) Michael Rand Bug Bounty2023-02-022023-06-13
499Authentication Bypass in Izanami Docker image 1.10.22 CVE-2023-22495 Authentication bypass JWT Security code review Container security Izanami Raphaël Lob Bug Bounty2023-02-032023-06-13
490Hacking into Toyota’s global supplier management network Authentication bypass Backdoor Toyota Eaton Z. (@XeEaton) Bug Bounty2023-02-062023-06-13
458Hacking our way into internal DBs with hardcoded authentication keys JWT SSO Authentication bypass Security misconfiguration NA Ophion Security (@OphionSecurity) Bug Bounty2023-02-132023-06-13
444Technical Advisory – Azure B2C – Crypto Misuse and Account Compromise Cryptographic issues JWT Account takeover Authentication bypass Microsoft (Azure) John Novak Bug Bounty2023-02-152023-06-13
429Bypassing SSO Authentication from the Login Without Password Feature Lead to Account Takeover Account takeover SSO OTP Authentication bypass NA Aidil Arief Bug Bounty2023-02-202023-06-13
374How I Earned $1800 for finding a (Business Logic) Account Takeover Vulnerability? Account takeover Authentication bypass NA Vivek Kumar Yadav (@0xd3vil) Bug Bounty2023-03-012023-06-13
366Traveling with OAuth - Account Takeover on Booking.com OAuth Account takeover Authentication bypass Open redirect Booking.com KAYAK Aviad Carmel (@AviadCarmel) Bug Bounty2023-03-022023-06-13
357GitHub Security Lab audited DataHub: Here’s what they found SSRF Insecure deserialization Cypher injection Authentication bypass Authorization bypass XSS Open redirect JWT JSON injection Cryptographic issues Session expiration issue Security code review DataHub Alvaro Muñoz (@pwntester) Bug Bounty2023-03-032023-06-13
345Authentication Bypass Vulnerability in Mura CMS and Masa CMS (CVE-2022-47003 and CVE-2022-47002) Authentication bypass Security code review ColdFusion Mura CMS Masa CMS Brian (@hoyahaxa) Bug Bounty2023-03-062023-06-13
344Insecure Toyota CRM exposed Mexican customer information Authentication bypass Toyota Eaton Z. (@XeEaton) Bug Bounty2023-03-062023-06-13
342Remote Stealth Brute-force of Oracle Database Passwords Bruteforce Information disclosure Authentication bypass Components with known vulnerabilities NA Viktor Markopoulos Bug Bounty2023-03-062023-06-13
336[Account Takeover] Don’t Send a Message to anyone Before Reading This [External Audit] HTTP response manipulation Authentication bypass Account takeover NA Vipul Sahu Bug Bounty2023-03-072023-06-13
318CVE-2022-36413 Unauthorized Reset Password of Zoho ManageEngine ADSelfService Plus Password reset OTP bruteforce Account takeover Authentication bypass Zoho (ManageEngine) Sky Bug Bounty2023-03-102023-06-13
215How I was able to change password of any corporate user Account takeover Password reset Authentication bypass NA CH3TAN Bug Bounty2023-04-092023-06-13
207SecurePwn Part 1: Bypassing SecurePoint UTM’s Authentication (CVE-2023-22620) Authentication bypass SecurePoint Julien Ahrens (@MrTuxracer) Bug Bounty2023-04-112023-06-13
191A Big company Admin Panel takeover $4500 Authentication bypass 40x bypass Account takeover NA nanwn Bug Bounty2023-04-172023-06-13
190Multiple Critical Vulnerabilities In Strapi Versions <=4.7.1 Authentication bypass SSTI RCE Amazon cognito misconfiguration Information disclosure Strapi GhostCcamm (@GhostCcamm) Bug Bounty2023-04-172023-06-13
163How careless default credentials impact to massive account takeover Authentication bypass Account takeover Weak credentials NA M Maulana Abdullah Bug Bounty2023-04-222023-06-13
148Redash SAML Authentication Bypass SAML Authentication bypass Redash An Trinh (@_tint0) Bug Bounty2023-04-282023-06-13
109PwnAssistant - Controlling /home%27s Via A Home Assistant RCE Authentication bypass RCE Security code review IoT Home Assistant elttam (@elttam) Bug Bounty2023-05-092023-06-13
103What is kong & why we’re relying on it RCE Sandbox escape Authentication bypass Hardcoded credentials Broken Access Control Privilege escalation JWT Konga Laluka (@TheLaluka) Bug Bounty2023-05-102023-06-13