Writeups List | WriteupDB

Write-ups

Check The Published Writeups

WDB	Title	Tags	Programs	Authors	Type	Publication	Added
4118	How I was able to get private ticket response panel and FortiGate web panel via blind XSS	Blind XSS	NA	Bijan Murmu (@0xBijan)	Bug Bounty	2019-06-06	2023-06-13
4069	Facebook BugBounty : Short story on Page admin disclosure	Authorization flaw Privilege escalation	Meta / Facebook	Bijan Murmu (@0xBijan)	Bug Bounty	2019-06-28	2023-06-13
4013	Facebook BugBounty: Tale of an Instagram bug disclosing user’s phone number via checkpoint	Information disclosure	Meta / Facebook	Bijan Murmu (@0xBijan)	Bug Bounty	2019-07-26	2023-06-13
3918	How I found a simple and weird Account takeover bug	Account takeover Missing authentication	NA	Bijan Murmu (@0xBijan)	Bug Bounty	2019-09-14	2023-06-13
1712	Bug Bounty catches part -1	Authentication bypass Information disclosure Broken Access Control	NA	Bijan Murmu (@0xBijan)	Bug Bounty	2022-03-20	2023-06-13
1694	Deleting account via support ticket	IDOR Broken Access Control	NA	Bijan Murmu (@0xBijan)	Bug Bounty	2022-03-26	2023-06-13
1693	Stealing cookies from subdomain leads to takeover user accounts at redacted.com	Account takeover XSS	NA	Bijan Murmu (@0xBijan)	Bug Bounty	2022-03-27	2023-06-13
1558	Takeover seller accounts worth billions & millions	IDOR Account takeover	NA	Bijan Murmu (@0xBijan)	Bug Bounty	2022-05-12	2023-06-13
1512	Exploiting iOS app for fun and profit	Account takeover Information disclosure	NA	Bijan Murmu (@0xbijan)	Bug Bounty	2022-05-29	2023-06-13