Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
864PENTEST TALES: EXIF Data Manipulation Unrestricted file upload Stored XSS NA Armand Jasharaj Bug Bounty2022-11-052023-06-13
863Directory traversal in PDF viewing application. Leading to full database takeover Path traversal NA Tom Wrinn Bug Bounty2022-11-052023-06-13
862Story of a $1k bounty β€” SSRF to leaking access token and other sensitive information SSRF NA Faique (@imfaiqu3) Bug Bounty2022-11-052023-06-13
861CVE-2022-26730 | ColorSync | Hoyt LLC MacOS Memory corruption RCE Apple David Hoyt (@h02332) Bug Bounty2022-11-052023-06-13
860Exploit Feature To Get High Bug impact Logic flaw NA Mohamed Anani (@0xm5awy) Bug Bounty2022-11-052023-06-13
859IDOR on Unsubscribe emails to $200 bounty. IDOR NA shbugger1 Bug Bounty2022-11-062023-06-13
856Exploring ZIP Mark-of-the-Web Bypass Vulnerability (CVE-2022-41049) Local Privilege Escalation Windows Microsoft Kuba Gretzky (@mrgretzky) Bug Bounty2022-11-082023-06-13
853Some Tips to Finding IDORs more easily and Fixing them IDOR NA Xenon Bug Bounty2022-11-082023-06-13
852Netgear Nighthawk R7000P AWS_JSON Unauthenticated Double Stack Overflow Vulnerability Memory corruption Netgear Jean-Jamil Khalife Bug Bounty2022-11-092023-06-13
851My First Account Takeover Account takeover Logic flaw NA JAI NIRESH J Bug Bounty2022-11-092023-06-13
850Jit-Picking: Differential Fuzzing of JavaScript Engines Browser hacking Mozilla Lukas Bernhard (@bernhl) Bug Bounty2022-11-092023-06-13
849Chaining Path Traversal with SSRF to disclose internal git repo data in a Bank Asset SSRF Path traversal NA Nikhil (niks) (@niksthehacker) Bug Bounty2021-11-092023-06-13
848Sleep SQL injection on Name Parameter While Updating Profile SQL injection NA Umer Yousuf Bug Bounty2022-11-102023-06-13
843Discovering vendor-specific vulnerabilities in Android Android Samsung Google Oversecured (@OversecuredInc) Bug Bounty2022-11-102023-06-13
842Windows Kernel: Exploit CVE-2022-35803 in Common Log File System Windows Local Privilege Escalation Type confusion Microsoft luckyu (@uuulucky) Bug Bounty2022-11-112023-06-13
841From Shodan Dork to Grafana πŸ“ŠLocal File Inclusion LFI Old components with known vulnerabilities NA Anurag__Verma Bug Bounty2022-11-112023-06-13
837CVE-2019-8561: A Hard-to-Banish PackageKit Framework Vulnerability in macOS MacOS Local Privilege Escalation SIP bypass Apple Mickey Jin (@patch1t) Bug Bounty2022-11-112023-06-13
836Finding Reflected XSS In A Strange Way XSS NA Raymond Lind Bug Bounty2022-11-112023-06-13
835How i get $100 in just 10 minutes ! Race condition NA Jody ritonga Bug Bounty2022-11-132023-06-13
833CVE-2022-32929 - Bypass iOS backup%27s TCC protection Local Privilege Escalation TCC bypass MacoS iOS Apple Csaba Fitzl (@theevilbit) Bug Bounty2022-11-142023-06-13
832SSD Advisory – Cisco Secure Manager Appliance remediation_request_utils SQL Injection Remote Code Execution SQL injection RCE Security code review Cisco - Bug Bounty2022-11-142023-06-13
831SSD Advisory – Cisco Secure Manager Appliance jwt_api_impl Hardcoded JWT Secret Elevation of Privilege Hardcoded credentials Security code review JWT Privilege escalation Cisco - Bug Bounty2022-11-142023-06-13
829Winning QR with DOM-Based XSS | Bug Bounty POC DOM XSS NA Haroon Hameed (@HaroonHameed40) Bug Bounty2022-11-152023-06-13
826Stealing passwords from infosec Mastodon - without bypassing CSP HTML injection Mastodon infosec.exchange Gareth Heyes (@garethheyes) Bug Bounty2022-11-152023-06-13
824Relaying to AD Certificate Services over RPC Active Directory ADCS Windows NA Sylvain Heiniger (@sploutchy) Bug Bounty2022-11-162023-06-13