Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
2000Zero Click To Account Takeover Account takeover Password reset NA M7.Arman (@ArmanSecurity) Bug Bounty2021-12-142023-06-13
1999How I Bypassed Incapsula WAF By Imperva SQL injection NA Dawood Ikhlaq Bug Bounty2021-12-142023-06-13
1996How I found the Authentication Bypass bug and Earn $$$$ Session expiration issue NA Thedarkwayg (@shadow_CLAY) Bug Bounty2021-12-152023-06-13
1994GHSL-2021-1053: Path traversal in Grafana REST API - CVE-2021-43813, CVE-2021-43815 Path traversal Grafana Labs Alvaro Muñoz (@pwntester) Bug Bounty2021-12-152023-06-13
1992Exploitation Of CVE-2021-21220 – From Incorrect JIT Behavior To RCE Browser hacking Memory corruption RCE Google Microsoft Bruno Keith (@bkth_) Bug Bounty2021-12-162023-06-13
1991Hacked Google-Meet…??! Authorization flaw Google 7𝖍3𝖍4𝖈kv157 (@7h3h4ckv157) Bug Bounty2021-12-182023-06-13
1988Stored XSS by bypassing signature XSS Unrestricted file upload NA Abdulrahman Makki (@AMakki1337) Bug Bounty2021-12-202023-06-13
1985Blackbox Cookie Testing — How I Cracked The Admin’s Cookie Authentication bypass NA Saeed Balquizi Bug Bounty2021-12-202023-06-13
1984Bring Your Own SSRF – The Gateway Actuator SSRF DoS NA Wyatt Dahlenburg (@wdahlenb) Bug Bounty2021-12-202023-06-13
1983How I earned $$$ by bypassing 2FA MFA bypass Forced browsing NA Mohamed Taha (@Mohamed12742780) Bug Bounty2021-12-212023-06-13
1982SSD Advisory – Rocket.Chat Client-side Remote Code Execution RCE MacOS Rocket.Chat - Bug Bounty2021-12-212023-06-13
1981How I found (P2) Broken Authentication with Zero Skill of Hacking Authentication bypass Account takeover NA yoshi m lutfi (@yoshiahmadlutfi) Bug Bounty2021-12-212023-06-13
1978How I was able to bypass WAF and find the origin IP and a few sensitive files WAF bypass NA Jan Muhammad Zaidi (@hasanakajan) Bug Bounty2021-12-222023-06-13
1974Information Disclosure leads to sensitive credential($$$) Information disclosure NA khan mamun (@mamunwhh) Bug Bounty2021-12-252023-06-13
1973Massive Users Account Takeovers(Chaining Vulnerabilities to IDOR)😲 Authentication bypass IDOR Lack of rate limiting NA Anurag__Verma Bug Bounty2021-12-252023-06-13
1969XSS via file upload XSS Unrestricted file upload NA Jay Sharma Bug Bounty2021-12-272023-06-13
1968Bi/ug Bounties and HyperV RCE Research RCE Microsoft Hyper-V Peter Hlavaty (@rezer0dai) Bug Bounty2021-12-272023-06-13
1967Common Nginx Misconfiguration leads to Path Traversal Path traversal NA MikeChan Bug Bounty2021-12-282023-06-13
1963Story of a weird CSRF bug CSRF NA Sudhanshu Rajbhar (@sudhanshur705) Bug Bounty2021-12-292023-06-13
1958Bypassing Identity-Aware Proxy - Google Cloud Vulnerability Authorization flaw Token leak OAuth Google SebLu Bug Bounty2021-12-302023-06-13
1955Bug Hunting Journey of 2021 Stored XSS Open redirect Token leak CSRF Logic flaw Information disclosure IDOR Account takeover NA Sudhanshu Rajbhar (@sudhanshur705) Bug Bounty2021-12-312023-06-13
1953One Click To Account Takeover Mass assignment NA M7.Arman (@ArmanSecurity) Bug Bounty2022-01-012023-06-13
1952Abusing Business Logic of an Application to create backdoor in a form APP Logic flaw NA Snap Sec (@snap_sec) Bug Bounty2022-01-012023-06-13
1951A tale of zero click account takeover Account takeover IDOR NA Veshraj Ghimire (@GhimireVeshraj) Bug Bounty2022-01-012023-06-13
1949The Story Of How I Bypass SSO Login Authentication bypass NA zer0d Bug Bounty2022-01-022023-06-13