Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
942The Danger of Falling to System Role in AWS SDK Client Cloud Privilege escalation Security misconfiguration NA Fracensco Lacerenza (@lacerenza_fra) Bug Bounty2022-10-182023-06-13
937Scan QR Code and Got Hacked (CVE-2021–43530 : UXSS on Firefox Android Version) Universal XSS Android Mozilla hafiizh Bug Bounty2022-10-192023-06-13
936CVE-2022-3236: Sophos Firewall User Portal and Web Admin Code Injection RCE Code injection Security code review Sophos Guy Lederfein (@glederfein) Bug Bounty2022-10-192023-06-13
934FabriXss (CVE-2022-35829): How We Managed to Abuse a Custom Role User Using CSTI and Stored XSS in Azure Fabric Explorer CSTI Stored XSS Microsoft Lidor Ben Shitrit Bug Bounty2022-10-192023-06-13
933Second Order XXE Exploitation XXE Arbitrary file read NA Kuldeep Pandya (@kuldeepdotexe) Bug Bounty2022-10-192023-06-13
932HTTP/3 connection contamination: an upcoming threat? HTTP connection contamination NA James Kettle (@albinowax) Bug Bounty2022-10-192023-06-13
931A New Attack Surface on MS Exchange Part 4 - ProxyRelay! RCE Privilege escalation Microsoft Orange Tsai (@orange_8361) Bug Bounty2022-10-192023-06-13
93023000$ for Authentication Bypass & File Upload & Arbitrary File Overwrite JWT Authentication bypass Arbitrary file write Unrestricted file upload NA Souhaib Naceri (@h4x0r_dz) Bug Bounty2022-10-192023-06-13
927SHA-3 Buffer Overflow Buffer Overflow Memory corruption Cryptographic issues XKCP Apple Python PHP PyPy SHA3 for Ruby Nicky Mouha Bug Bounty2022-10-202023-06-13
923$1,000+ P1: PII Disclosure W/ IDOR IDOR NA Graham Zemel (@grahamzemel) Bug Bounty2022-10-212023-06-13
922Sail away, sail away, sail away RCE Privilege escalation NA Reino Mostert Bug Bounty2022-10-212023-06-13
921Broken Link Hijacking — My Second Finding on Hackerone! Broken link hijacking NA mehedishakeel (@mehedishakeel) Bug Bounty2022-10-232023-06-13
916How I Found A Simple Stored XSS Stored XSS NA Raymond Lind Bug Bounty2022-10-242023-06-13
915SSRF & LFI In Uploads Feature SSRF LFI NA Raymond Lind Bug Bounty2022-10-242023-06-13
913Remote Code Execution by Abusing Apache Spark SQL SQL injection RCE NA Colin McQueen Bug Bounty2022-10-242023-06-13
910Eat What You Kill :: Pre-authenticated Remote Code Execution in VMWare NSX Manager RCE Insecure deserialization Security code review VMware Sina Kheirkhah (@SinSinology) Bug Bounty2022-10-252023-06-13
909Support supports a Hacker Social engineering Spoofing Authorization flaw Account takeover NA mechboy (@mechboy_) Bug Bounty2022-10-252023-06-13
908Chaining multiple vulnerabilities for credential stealing CSRF Self-XSS XSS NA Bartłomiej Bergier (@_bergee_) Bug Bounty2022-10-252023-06-13
907Microsoft SharePoint Server Post-Authentication Server-Side Request Forgery vulnerability SSRF Microsoft Li Jiantao (@CurseRed) Bug Bounty2022-10-252023-06-13
906GL.iNET GL-MT300N-V2 Router Vulnerabilities and Hardware Teardown OS command injection Arbitrary file read Information disclosure Account takeover Stored XSS Lack of rate limiting Weak credentials Password policy bypass GL.iNet Olivier Laflamme (@olivier_boschko) Bug Bounty2022-10-262023-06-13
905Stored XSS To Cookie Exfiltration Stored XSS NA Raymond Lind Bug Bounty2022-10-262023-06-13
904SSRF Bug Leads To AWS Metadata Exposure SSRF NA Raymond Lind Bug Bounty2022-10-262023-06-13
903SSD Advisory – Galaxy Store Applications Installation/Launching without User Interaction XSS Samsung - Bug Bounty2022-10-262023-06-13
901SiriSpy - iOS bug allowed apps to eavesdrop on your conversations with Siri iOS MacOS Bluetooth Local Privilege Escalation TCC bypass Apple Guilherme Rambo (@_inside) Bug Bounty2022-10-262023-06-13
900Client Side Desync Attack (CL.0 Request Smuggling) — Bounty of $150 HTTP Request Smuggling Client-Side Desync attack NA Bodhendu Panda Bug Bounty2022-10-262023-06-13