1561 | Certifried: Active Directory Domain Privilege Escalation (CVE-2022–26923) |
Active Directory Privilege Escalation |
Microsoft |
Oliver Lyak (@ly4k_) |
Bug Bounty | 2022-05-10 | 2023-06-13 |
1560 | Diving Into Pre-created Computer Accounts |
Active Directory
Local Privilege Escalation
Windows |
NA |
Oddvar Moe (@Oddvarmoe) |
Bug Bounty | 2022-05-10 | 2023-06-13 |
1558 | Takeover seller accounts worth billions & millions |
IDOR
Account takeover |
NA |
Bijan Murmu (@0xBijan) |
Bug Bounty | 2022-05-12 | 2023-06-13 |
1557 | New Wine in Old Bottle - Microsoft Sharepoint Post-Auth Deserialization RCE (CVE-2022-29108) |
Insecure deserialization
RCE |
Microsoft |
Nguyễn Tiến Giang (@testanull) |
Bug Bounty | 2022-05-12 | 2023-06-13 |
1556 | Forging OAuth tokens using discovered client id and client secret |
Information disclosure
Account takeover |
NA |
Basyouni (@AshrafBasyoni4) |
Bug Bounty | 2022-05-12 | 2023-06-13 |
1555 | From android app to access admin dashboard |
Exposed registration page
Account takeover |
NA |
Oday Alhalabi (@OdayAlhalabi) |
Bug Bounty | 2022-05-13 | 2023-06-13 |
1554 | My New Discovery In Oracle E-Business Login Panel That Allowed To Access For All Employees Information%27s & In Some cases Passwords At More Than 1000 Companies |
Exposed registration page |
NA |
Orwa Atyat (@GodfatherOrwa) |
Bug Bounty | 2022-05-14 | 2023-06-13 |
1551 | Hacking Swagger-UI - from XSS to account takeovers |
DOM XSS
Account takeover |
Shopify
Paypal
GitLab
Atlassian
Yahoo! / Verizon Media
Microsoft
Jamf |
Dawid Moczadło (@kannthu1) |
Bug Bounty | 2022-05-16 | 2023-06-13 |
1550 | Bypassing WAF to Weaponize a Stored XSS |
Stored XSS |
NA |
ne555 |
Bug Bounty | 2022-05-17 | 2023-06-13 |
1546 | Variant Cloud Analysis |
Default credentials |
NA |
jspin (@jespinhara) |
Bug Bounty | 2022-05-18 | 2023-06-13 |
1544 | Exploiting an Unbounded memcpy in Parallels Desktop: A Pwn2Own 2021 Guest-to-Host Virtualization Escape |
Memory corruption |
Parallels |
RET2 Systems (@ret2systems) |
Bug Bounty | 2022-05-19 | 2023-06-13 |
1543 | CVE-2022-21404: Another Story Of Developers Fixing Vulnerabilities Unknowingly Because Of CodeQL |
Insecure deserialization |
Oracle |
Paulino Calderon (@calderpwn) |
Bug Bounty | 2022-05-19 | 2023-06-13 |
1540 | Gaining access through error-based SQLi using WebSockets |
SQL injection
Websockets
Password reset |
NA |
Bitcrack (@bitcrack_cyber) |
Bug Bounty | 2022-01-12 | 2023-06-13 |
1539 | Research: Auditing WordPress Plugins |
SQL injection
LFI
XSS
RCE |
NA |
cy//ective (@cyllective) |
Bug Bounty | 2022-05-20 | 2023-06-13 |
1538 | Leaking Your GitHub Repositories With Snyk Code |
Path traversal
Broken Access Control |
NA |
Ron Masas (@RonMasas) |
Bug Bounty | 2022-05-20 | 2023-06-13 |
1537 | Pre-hijacked accounts: An Empirical Study of Security Failures in User Account Creation on the Web |
Account takeover
Pre-hijacking attack |
Dropbox
Meta / Facebook
LinkedIn
WordPress
Zoom |
Avinash Sudhodanan (@sudoavi) |
Bug Bounty | 2022-05-20 | 2023-06-13 |
1536 | I Obtained ADMIN access via the Account Activation link [In 30 seconds] |
Privilege escalation
Amazon cognito misconfiguration |
NA |
popalltheshells |
Bug Bounty | 2022-05-20 | 2023-06-13 |
1533 | A business Logic issue worth $1500 |
Logic flaw |
NA |
Mohsin Khan (@tabaahi_) |
Bug Bounty | 2022-05-21 | 2023-06-13 |
1532 | Vulnerability In PayPal worth 200000$ bounty, Attacker can Steal Your Balance by One-Click |
Clickjacking |
Paypal |
Souhaib Naceri (@h4x0r_dz) |
Bug Bounty | 2022-05-22 | 2023-06-13 |
1531 | 2FA Bypass on private bug bounty program due to CSRF token misconfiguration |
MFA bypass |
NA |
Sharat Kaikolamthuruthil (@sharp488) |
Bug Bounty | 2022-05-22 | 2023-06-13 |
1530 | 2FA Bypass on private bug bounty program due to improper caching mechanism |
MFA bypass |
NA |
Sharat Kaikolamthuruthil (@sharp488) |
Bug Bounty | 2022-05-22 | 2023-06-13 |
1529 | Finding vulnerabilities in Swiss Post%27s future e-voting system - Part 2 |
Insecure deserialization
Cryptographic issues |
NA |
Ruben Santamarta (@reversemode) |
Bug Bounty | 2022-05-22 | 2023-06-13 |
1528 | Breaking Reverse Proxy Parser Logic |
Path traversal |
NA |
Blake Jacobs (@z0idsec) |
Bug Bounty | 2022-05-22 | 2023-06-13 |
1526 | CVE-2022-22977: VMware Guest Authentication Service LPE (FIXED) |
Local Privilege Escalation |
VMware |
Jacob Baines (@Junior_Baines) |
Bug Bounty | 2022-05-24 | 2023-06-13 |
1524 | How I Found a company’s internal S3 Bucket with 41k Files |
AWS misconfiguration |
NA |
Tarun Koyalwar (@KoyalwarTarun) |
Bug Bounty | 2022-05-24 | 2023-06-13 |