Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
4776Stealing money from one account to another account Logic flaw NA Ajay Gautam (@evilboyajay) Bug Bounty2018-05-022023-06-13
4774$4500 bounty - How I got lucky Subdomain takeover NA Eray Mitrani (@ErayMitrani) Bug Bounty2018-05-032023-06-13
4773How I Got Paid $0 From the India’s largest online gifting portal — Bug Bounty Program Payment tampering Parameter tampering NA Hariom Vashisth Bug Bounty2018-05-052023-06-13
4772A Five Minute SQL-I SQL injection NA Ashish Jha Bug Bounty2018-05-062023-06-13
4771Asus Control Center – An Information Disclosure and a database connection Clear-Text password leakage Vulnerability Authorization flaw Information disclosure Asus Mohamed A. Baset Bug Bounty2018-05-082023-06-13
4767Whatsapp- DOS vulnerability on Android/iOS/Web DoS Meta / Facebook Pratheesh P Narayanan (@PRATHEESH_PPN) Bug Bounty2018-05-152023-06-13
4763How i HACKED admin account via password reset IDOR function of one private currency exchanger site IDOR Account takeover Password reset NA Aayush Pokhrel (@aayushpok) Bug Bounty2018-05-192023-06-13
4762How i got 100$ from one private website Information disclosure NA Aayush Pokhrel (@aayushpok) Bug Bounty2018-05-192023-06-13
4759Self-XSS + CSRF to Stored XSS Self-XSS CSRF Stored XSS NA Renwa (@RenwaX23) Bug Bounty2018-05-202023-06-13
4756RCE by uploading a web.config RCE NA 003random (@rub003) Bug Bounty2018-05-222023-06-13
4755#BugBounty — "How I was able to hack any user account via password reset?" IDOR Account takeover Password reset NA Bikash Gupta (@BgxDoc) Bug Bounty2018-05-232023-06-13
4751How i was able to get admin panel on a private program Weak credentials NA Shahzad Sadiq (@ShahzadSadiq25) Bug Bounty2018-05-292023-06-13
4750How I got hall of fame in two fortune 500 companies — An RCE story… RCE NA Alfie (@emenalf) Bug Bounty2018-05-292023-06-13
4749How I found 5 store XSS on a private program. Each worth "1,016.66$" Stored XSS NA Shahzad Sadiq (@ShahzadSadiq25) Bug Bounty2018-05-302023-06-13
4748Account Takeover and Blind XSS! Go Pro, get Bugs! IDOR Stored XSS Account takeover Blind XSS NA Tabahi (@_tabahi) Bug Bounty2018-05-302023-06-13
47475k$ for path traversal on *.paypal-corp.com subdomain Path traversal Paypal lalka (@0x01alka) Bug Bounty2018-05-302023-06-13
4745#Bug Bounty — How I booked a rental house for just 1.00 INR — Price Manipulation in Citrus Pay Parameter tampering NA Raghavendra Reddy Bug Bounty2018-05-312023-06-13
4744How I Earned $750 Bounty Reward From AT&T bug Bounty -Adesh Kolte RCE Clickjacking XSS Same Origin Method Execution AT&T Adesh Nandkishor kolte (@AdeshKolte) Bug Bounty2018-06-012023-06-13
4743How i converted SSRF to XSS in Jira. SSRF XSS NA Ashish Kunwar (@D0rkerDevil) Bug Bounty2018-06-012023-06-13
4742Getting PHP Code Execution and leverage access to panels,databases,server Code injection NA Shawar Khan (@ShawarkOFFICIAL) Bug Bounty2018-06-012023-06-13
4740Reading Your Emails With A Read&Write Chrome Extension Same Origin Policy Bypass (~8 Million Users Affected) SOP bypass Browser extension hacking NA Matthew Bryant (@IAmMandatory) Bug Bounty2018-06-052023-06-13
4739Are you sure this is a trusted email? Open mail relay NA Khaled Hassan Bug Bounty2018-06-052023-06-13
4738Searching for XSS found LDAP injection LDAP injection NA Davide Tampellini (@tampe125) Bug Bounty2018-06-052023-06-13
4736#BugBounty —" Database hacked of India’s Popular Sports company"-Bypassing Host Header to SQL injection to dumping Database — An unusual case of SQL injection. SQL injection NA Avinash Jain (@logicbomb_1) Bug Bounty2018-06-062023-06-13
4735How I found XSS via SSRF vulnerability -Adesh Kolte SSRF XSS CERT-EU Motorola Stanford Adesh Nandkishor kolte (@AdeshKolte) Bug Bounty2018-06-072023-06-13