Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
3431Information disclosure and reflected XSS on Tokopedia Reflected XSS Information disclosure Tokopedia wis4nggeni Bug Bounty2020-06-012023-06-13
3425How I got my first big bounty payout with Tesla Information disclosure Tesla CJ Fairhead (@xyantix) Bug Bounty2020-06-042023-06-13
3417Multiple Information exposed due to misconfigured Service-now ITSM instances Missing authentication Information disclosure NA Th3G3nt3lman (@Th3G3nt3lman) Bug Bounty2020-06-052023-06-13
3415XSS to Database Credential Leakage & Database Access — Story of total luck! Reflected XSS Information disclosure NA Harsh Bothra (@harshbothra_) Bug Bounty2020-06-062023-06-13
3412This is fine 🐶 Information disclosure NA Ricardo Iramar dos Santos (@ricardo_iramar) Bug Bounty2020-06-082023-06-13
3384How I made more than $30K with Jolokia CVEs Reflected XSS RCE Information disclosure NA Patrik Fehrenbach (@ITSecurityguard) Bug Bounty2020-06-162023-06-13
3381Hackerone Bug Bounty Report: Hinge Information disclosure Hinge Tyle Butler (@tbutler0x90) Bug Bounty2020-06-182023-06-13
3380Replying on LiveStream leading to Page Admin Disclosure: Facebook Bug Bounty Information disclosure Meta / Facebook Saugat Pokharel (@saugatpk5) Bug Bounty2020-06-182023-06-13
3379One Token to leak them all : The story of a $8000 NPM_TOKEN Information disclosure Google Aseem Shrey (@AseemShrey) Bug Bounty2020-06-192023-06-13
3378From Recon to Bypassing MFA Implementation in OWA by Using EWS Misconfiguration Information disclosure MFA bypass NA YoKo Kho (@YokoAcc) Bug Bounty2020-06-192023-06-13
3376How did i find information Disclosure on Facebook-Writeup Information disclosure Meta / Facebook Alaa Abdulridha (@Madrid89001310) Bug Bounty2020-06-202023-06-13
3368Exploiting Bitdefender Antivirus: RCE from any website RCE Information disclosure Bitdefender Wladimir Palant (@WPalant) Bug Bounty2020-06-222023-06-13
3357API Endpoint leads to Account Takeover In Android Application Exposed token generation endpoint Information disclosure NA Adesh Nandkishor kolte (@AdeshKolte) Bug Bounty2020-06-282023-06-13
3347How I made $1500 dollars using base64 decoder :) Information disclosure NA Dilip (@dilip_spartn) Bug Bounty2020-07-022023-06-13
3327How i was able to bypass Email Confirm — P4 Information disclosure NA Mohammed Ehssan (@alone_Wwolf) Bug Bounty2020-07-062023-06-13
3321From N/A to Resolved For BackBlaze Android App[Hackerone Platform] Bucket Takeover Hardcoded credentials Information disclosure BackBlaze Sahil Tikoo (@viperbluff) Bug Bounty2020-07-092023-06-13
3319Exploiting Application Logic to Referral Code Disclosure Logic flaw Information disclosure NA Vaibhav Joshi (@vj0shii) Bug Bounty2020-07-092023-06-13
3308How An API Misconfiguration Can Lead To Your Internal Company Data Information disclosure NA Me9187 (@Me9187) Bug Bounty2020-07-122023-06-13
3304Admin ,Editor can disclose personnel email of other editor, admin on page(who created shop) Information disclosure Meta / Facebook The 3 Day Account Takeover Bug Bounty2020-07-162023-06-13
3302I am able to see user’s sensitive data through JSON file. Information disclosure Authorization flaw NA Saurabh siddharam sanmane (@saurabhsanmane2) Bug Bounty2020-07-172023-06-13
3301The Story of My first 4 digit bounty from Facebook Logic flaw Information disclosure Meta / Facebook Sudip Shah Bug Bounty2020-07-172023-06-13
3285Hunting Android Application Bugs Using Android Studio. Authorization flaw Client-side enforcement of server-side security Information disclosure NA Tarek Mohammed (@Conan0x3) Bug Bounty2020-07-242023-06-13
3282A Simple IDOR which should not be missed on dating site ;) IDOR Information disclosure NA neelam Bug Bounty2020-07-262023-06-13
3281Obtained a bunch of sensitive data in just few steps — Hacking AWS misconfiguration Information disclosure NA Airlangga Visnhu Murthi Bug Bounty2020-07-262023-06-13
3270FFUF and my first bounty Information disclosure NA Suryansh Mansharamani Bug Bounty2020-07-292023-06-13