Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
1476Finding vulnerabilities in curl 7.83.0 without reading a single-line of C code SSRF Information disclosure HSTS bypass Internet Bug Bounty (curl) Haxatron (@Haxatron1) Bug Bounty2022-06-122023-06-13
1470SynLapse – Technical Details for Critical Azure Synapse Vulnerability Cross-tenant vulnerability RCE Cloud Microsoft Tzah Pahima (@TzahPahima) Bug Bounty2022-06-142023-06-13
1469Cryptographic Side-Channels (Timing Leaks) in JSBN Cryptographic issues Side-channel attack Timing attack Xfinity Opensource Soatok (@SoatokDhole) Bug Bounty2022-06-142023-06-13
1468403 bypass on a fortune 100 financial institution (P3) Information disclosure Authorization flaw Forced browsing NA Damaidec Bug Bounty2022-06-142023-06-13
1467Zimbra Email - Stealing Clear-Text Credentials via Memcache injection Memcache injection CRLF injection Zimbra Sonar (@SonarSource) Bug Bounty2022-06-142023-06-13
14662FA Bypass via Basic Authentication on private bug bounty program MFA bypass NA Sharat Kaikolamthuruthil (@sharp488) Bug Bounty2022-06-142023-06-13
1465Automating reflected XSS with burp-suite Intruder Reflected XSS NA Santosh Kumar Sha (@killmongar1996) Bug Bounty2022-06-142023-06-13
1464Hertzbleed Attack Side-channel attack Hardware hacking Cryptographic issues Intel Cloudflare Microsoft Yingchen Wang (@YingchenWang96) Bug Bounty2022-06-142023-06-13
1463[BugTales] UnZiploc: From 0-click To Platform Compromise Memory corruption Logic flaw RCE Local Privilege Escalation Huawei Daniel Komaromy (@kutyacica) Bug Bounty2022-06-142023-06-13
1460Amazon Linux "log4j hotpatch" <1.3-5 local privilege escalation to root (race condition) Local Privilege Escalation Amazon Justin Steven (@justinsteven) Bug Bounty2022-06-152023-06-13
1459CVE-2022-23088: Exploiting A Heap Overflow In The Freebsd Wi-fi Stack Memory corruption RCE FreeBSD Security Team m00nbsd (@m00nbsd) Bug Bounty2022-06-162023-06-13
1455Chaining MFA-Enabled IAM Users with IAM Roles for Potential Privilege Escalation in AWS Privilege escalation AWS Jason Kao Bug Bounty2022-06-162023-06-13
1451Hacking a NFT Platform SSRF NA Muhammad Abdullah Bug Bounty2022-06-172023-06-13
1450How I hacked one of the biggest Airline in the world IDOR Account takeover Authorization flaw NA Dali Jandro (@Sazouki_) Bug Bounty2022-06-182023-06-13
1448Account Takeover by OTP bypass Information disclosure Client-side enforcement of server-side security OTP bypass Account takeover NA Vaibhav Kumar Srivastava Bug Bounty2022-06-192023-06-13
1447Every XSS is different XSS NA Leonardo Bug Bounty2022-06-202023-06-13
1444XSS Vulnerability in IBM Content Navigator (CVE-2020-4757) XSS IBM Olivier Laflamme (@olivier_boschko) Bug Bounty2022-06-212023-06-13
1443Widespread prototype pollution gadgets Prototype pollution NA Gareth Heyes (@garethheyes) Bug Bounty2022-06-212023-06-13
1442Exploiting vulnerabilities in iOS Application IDOR Bruteforce Lack of rate limiting Account takeover iOS NA Raj Singh Chauhan (@raj_singh_ch) Bug Bounty2022-06-222023-06-13
1440We were vulnerable - how a security company could have vulns Broken Access Control Authorization flaw Information disclosure Volkis Soman Verma Bug Bounty2022-06-222023-06-13
1437Lock Screen Bypass Exploit of Android Devices (CVE-2022–20006) Authentication bypass Lock screen bypass Google Joshua Nearchos Bug Bounty2022-06-232023-06-13
1436CVE-2022-31749: WatchGuard Authenticated Arbitrary File Read/Write (Fixed) Argument injection WatchGuard Jake Baines (@Junior_Baines) Bug Bounty2022-06-232023-06-13
1434Miracle - One Vulnerability To Rule Them All Insecure deserialization SSRF RCE Oracle Nguyễn Tiến Giang (@testanull) Bug Bounty2022-06-232023-06-13
1433An Out Of Scope domain Leads To a Critical Bug[$1500] Authorization flaw Broken Access Control NA Shakti Mohanty (@3ncryptSaan) Bug Bounty2022-06-242023-06-13
1431mysqlnd/pdo password buffer overflow leading to RCE (CVE 2022-31626) Buffer Overflow Memory corruption PHP Charles Fol (@cfreal_) Bug Bounty2022-06-252023-06-13