Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
123When Good APIs Go Bad: Uncovering 3 Azure API Management Vulnerabilities SSRF Unrestricted file upload Path traversal Cloud Microsoft (Azure) Liv Matan (@terminatorLM) Bug Bounty2023-05-042023-06-13
85From GitHub To Account Takeover: Misconfigured Actions Place GCP & AWS Accounts At Risk Account takeover Cloud OpenID Connect CI/CD NA Rezonate Bug Bounty2023-05-162023-06-13
71Exposing iCloud user’s Name, phone numbers, and email addresses. Information disclosure Apple (iCloud) Renganathan (@IamRenganathan) Bug Bounty2023-05-202023-06-13
64Red team: Journey from RCE to have total control of cloud infrastructure RCE SSTI Container escape Kubernetes Components with known vulnerabilities CI/CD NA Quang Vo (@mr_r3bot) Bug Bounty2023-05-222023-06-13
62Tampering with Conditional Access Policies Using Azure AD Graph API Cloud Privilege escalation Microsoft (Azure) Secureworks Counter Threat Unit (@Secureworks) Bug Bounty2023-05-232023-06-13
59GCP CloudSQL Vulnerability Leads to Internal Container Access and Data Exposure Cloud Privilege escalation Google (GCP) Ofir Balassiano (@ofir_balassiano) Bug Bounty2023-05-242023-06-13
58Unintended Path to Exam Domination - AWS EC2 Meta-Data Cloud Privilege escalation NA Dr. Michael Gschwender (@rootcathacking) Bug Bounty2023-05-242023-06-13