Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
3617Finding a P1 in one minute with Shodan.io (RCE) RCE NA sw33tLie (@sw33tLie) Bug Bounty2020-03-112023-06-13
3610How I got access to critical data of a Company in no time ? Information disclosure Lack of rate limiting Bruteforce NA Kaustubh Kale Bug Bounty2020-03-122023-06-13
3591Remote Image Upload Leads to RCE (Inject Malicious Code to PHP-GD Image) Unrestricted file upload RCE NA Muhammad R. Maulana Bug Bounty2020-03-212023-06-13
3578Attacking HelpDesks Part 1: RCE Chain on DeskPro, with Bitdefender as a Case Study RCE Bitdefender Abdulrahman Nour (@aboodnour) Bug Bounty2020-03-282023-06-13
3577OTP Bruteforce- Account Takeover OTP bruteforce Account takeover NA Ranjit Kumar Bug Bounty2020-03-292023-06-13
3571Microsoft Apache Solr RCE Velocity Template | Bug Bounty POC RCE Microsoft Muhammad Khizer Javed (@khizer_javed47) Bug Bounty2020-03-312023-06-13
3551Hacking a Telecommunication company(MTN) OTP bypass Bruteforce MTN Group Afolic Bug Bounty2020-04-132023-06-13
3540CSRF to RCE bug chain in Prestashop v1.7.6.4 and below RCE CSRF Stored XSS Unrestricted file upload PrestaShop Sivanesh Ashok (@sivaneshashok) Bug Bounty2020-04-182023-06-13
3532Misconfigured WordPress takeover to Remote Code Execution Wordpress takeover RCE Security misconfiguration NA Smaran Chand (@smaranchand) Bug Bounty2020-04-222023-06-13
35241-click RCE on Keybase RCE Keybase smaury (@smaury92) Bug Bounty2020-04-272023-06-13
3472My first 10k bdt bounty from an e-commerce site IDOR NA Md Saikat Bug Bounty2020-05-182023-06-13
3462RCE in Google Cloud Deployment Manager SSRF RCE Google Ezequiel Pereira (@epereiralopez) Bug Bounty2020-05-212023-06-13
3459How Source code reading helped me find an IDOR IDOR Information disclosure NA Sanjay Verdu (@codersanjay) Bug Bounty2020-05-222023-06-13
3457How dangerous is Request Splitting, a vulnerability in Golang or how we found the RCE in Portainer and hacked Uber HTTP request splitting SSRF CRLF injection RCE Uber Andrey Abakumov (@andrewaeva) Bug Bounty2020-05-252023-06-13
3435Hunting on ASPX Application For P1%27s [Unauthenticated SOAP,RCE, Info Disclosure] RCE Information disclosure IDOR NA ElMahdi Mrhassel (@ElMrhassel) Bug Bounty2020-05-312023-06-13
3410The Accidental RCE Unrestricted file upload NA Mr. Beast (@__mr_beast__) Bug Bounty2020-06-092023-06-13
3404Guest Blog: From File Upload to RCE Unrestricted file upload RCE NA Lukasz Wierzbicki (@v13rs8a) Bug Bounty2020-06-102023-06-13
3398Account Takeover via OTP Bruteforce (Apigee API) OTP bypass Bruteforce Lack of rate limiting NA Vishnuraj Bug Bounty2020-06-132023-06-13
3385How I managed to Escalate privilege as admin Lack of rate limiting Bruteforce Weak credentials NA Abisheik Magesh (@AbisheikMagesh) Bug Bounty2020-06-162023-06-13
3384How I made more than $30K with Jolokia CVEs Reflected XSS RCE Information disclosure NA Patrik Fehrenbach (@ITSecurityguard) Bug Bounty2020-06-162023-06-13
3382A subtle stored-XSS in WordPress core Stored XSS RCE WordPress Sam Thomas (@_s_n_t) Bug Bounty2020-06-172023-06-13
3375Bypass 2FA like a Boss Lack of rate limiting Bruteforce NA Seqrity (@seQrity) Bug Bounty2020-06-202023-06-13
3373It took me only 5 minutes to find an RCE on Bentley RCE Weak credentials Bentley Divyansh Sharma Bug Bounty2020-06-212023-06-13
3368Exploiting Bitdefender Antivirus: RCE from any website RCE Information disclosure Bitdefender Wladimir Palant (@WPalant) Bug Bounty2020-06-222023-06-13
3362Bypassing file upload filter by source code review in Bolt CMS RCE Unrestricted file upload Path traversal Security code review Bolt CMS Sivanesh Ashok (@sivaneshashok) Bug Bounty2020-06-272023-06-13