Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
1561Certifried: Active Directory Domain Privilege Escalation (CVE-2022–26923) Active Directory Privilege Escalation Microsoft Oliver Lyak (@ly4k_) Bug Bounty2022-05-102023-06-13
1560Diving Into Pre-created Computer Accounts Active Directory Local Privilege Escalation Windows NA Oddvar Moe (@Oddvarmoe) Bug Bounty2022-05-102023-06-13
1558Takeover seller accounts worth billions & millions IDOR Account takeover NA Bijan Murmu (@0xBijan) Bug Bounty2022-05-122023-06-13
1557New Wine in Old Bottle - Microsoft Sharepoint Post-Auth Deserialization RCE (CVE-2022-29108) Insecure deserialization RCE Microsoft Nguyễn Tiến Giang (@testanull) Bug Bounty2022-05-122023-06-13
1556Forging OAuth tokens using discovered client id and client secret Information disclosure Account takeover NA Basyouni (@AshrafBasyoni4) Bug Bounty2022-05-122023-06-13
1555From android app to access admin dashboard Exposed registration page Account takeover NA Oday Alhalabi (@OdayAlhalabi) Bug Bounty2022-05-132023-06-13
1554My New Discovery In Oracle E-Business Login Panel That Allowed To Access For All Employees Information%27s & In Some cases Passwords At More Than 1000 Companies Exposed registration page NA Orwa Atyat (@GodfatherOrwa) Bug Bounty2022-05-142023-06-13
1551Hacking Swagger-UI - from XSS to account takeovers DOM XSS Account takeover Shopify Paypal GitLab Atlassian Yahoo! / Verizon Media Microsoft Jamf Dawid Moczadło (@kannthu1) Bug Bounty2022-05-162023-06-13
1550Bypassing WAF to Weaponize a Stored XSS Stored XSS NA ne555 Bug Bounty2022-05-172023-06-13
1546Variant Cloud Analysis Default credentials NA jspin (@jespinhara) Bug Bounty2022-05-182023-06-13
1544Exploiting an Unbounded memcpy in Parallels Desktop: A Pwn2Own 2021 Guest-to-Host Virtualization Escape Memory corruption Parallels RET2 Systems (@ret2systems) Bug Bounty2022-05-192023-06-13
1543CVE-2022-21404: Another Story Of Developers Fixing Vulnerabilities Unknowingly Because Of CodeQL Insecure deserialization Oracle Paulino Calderon (@calderpwn) Bug Bounty2022-05-192023-06-13
1540Gaining access through error-based SQLi using WebSockets SQL injection Websockets Password reset NA Bitcrack (@bitcrack_cyber) Bug Bounty2022-01-122023-06-13
1539Research: Auditing WordPress Plugins SQL injection LFI XSS RCE NA cy//ective (@cyllective) Bug Bounty2022-05-202023-06-13
1538Leaking Your GitHub Repositories With Snyk Code Path traversal Broken Access Control NA Ron Masas (@RonMasas) Bug Bounty2022-05-202023-06-13
1537Pre-hijacked accounts: An Empirical Study of Security Failures in User Account Creation on the Web Account takeover Pre-hijacking attack Dropbox Meta / Facebook LinkedIn WordPress Zoom Avinash Sudhodanan (@sudoavi) Bug Bounty2022-05-202023-06-13
1536I Obtained ADMIN access via the Account Activation link [In 30 seconds] Privilege escalation Amazon cognito misconfiguration NA popalltheshells Bug Bounty2022-05-202023-06-13
1533A business Logic issue worth $1500 Logic flaw NA Mohsin Khan (@tabaahi_) Bug Bounty2022-05-212023-06-13
1532Vulnerability In PayPal worth 200000$ bounty, Attacker can Steal Your Balance by One-Click Clickjacking Paypal Souhaib Naceri (@h4x0r_dz) Bug Bounty2022-05-222023-06-13
15312FA Bypass on private bug bounty program due to CSRF token misconfiguration MFA bypass NA Sharat Kaikolamthuruthil (@sharp488) Bug Bounty2022-05-222023-06-13
15302FA Bypass on private bug bounty program due to improper caching mechanism MFA bypass NA Sharat Kaikolamthuruthil (@sharp488) Bug Bounty2022-05-222023-06-13
1529Finding vulnerabilities in Swiss Post%27s future e-voting system - Part 2 Insecure deserialization Cryptographic issues NA Ruben Santamarta (@reversemode) Bug Bounty2022-05-222023-06-13
1528Breaking Reverse Proxy Parser Logic Path traversal NA Blake Jacobs (@z0idsec) Bug Bounty2022-05-222023-06-13
1526CVE-2022-22977: VMware Guest Authentication Service LPE (FIXED) Local Privilege Escalation VMware Jacob Baines (@Junior_Baines) Bug Bounty2022-05-242023-06-13
1524How I Found a company’s internal S3 Bucket with 41k Files AWS misconfiguration NA Tarun Koyalwar (@KoyalwarTarun) Bug Bounty2022-05-242023-06-13