Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
740Pre-Auth RCE with CodeQL in Under 20 Minutes Security code review RCE Command injection Authorization flaw pgAdmin Florian Hauser (@frycos) Bug Bounty2022-12-022023-06-13
678Better Make Sure Your Password Manager Is Secure Hardcoded credentials XSS Cryptographic issues Authorization flaw Authentication bypass Click Studios kuekerino (@kuekerino) Bug Bounty2022-12-192023-06-13
608Meta Quest: Attacker could make any Oculus user to follow (subscribe) him without any approval IDOR Authorization flaw Meta / Facebook Dzmitry Lukyanenka (@vulnano) Bug Bounty2023-01-092023-06-13
415Exploiting Parameter Pollution in Golang Web Apps Authorization flaw HTTP parameter pollution Concourse VMware Rick Ramgattie (@RRamgattie) Bug Bounty2023-02-222023-06-13
347Exposing Users Table From a Leaky GraphQL Query GraphQL Authorization flaw Broken Access Control NA Inderjeet Singh - encodedguy (@3nc0d3dGuY) Bug Bounty2023-03-062023-06-13
310The Time I Hacked Google’s Manual Actions Database Broken Access Control Authorization flaw Google Tom Anthony (@TomAnthonySEO) Bug Bounty2023-03-132023-06-13
183How Material Security Uncovered a Vulnerability in the Gmail API Broken Access Control Authorization flaw Google Chris Long (@Centurion) Bug Bounty2023-04-182023-06-13
78A $1,000,000 bounty? The KuCoin User Information Leak Information disclosure Zendesk Authorization flaw Security misconfiguration NA Corben Leo (@hacker_) Bug Bounty2023-05-182023-06-13