Write-ups
Check The Published Writeups
| WDB | Title | Tags | Programs | Authors | Type | Publication | Added |
|---|---|---|---|---|---|---|---|
| 1079 | Breaking Bitbucket: Pre Auth Remote Command Execution (CVE-2022-36804) | RCE OS command injection | Atlassian | Maxwell Garrett (@TheGrandPew) | Bug Bounty | 2022-09-14 | 2023-06-13 |
| 548 | Exploiting Hardcoded Keys to achieve RCE in Yellowfin BI | RCE Authentication bypass Security code review JWT | Yellowfin BI | Maxwell Garrett (@TheGrandPew) | Bug Bounty | 2023-01-24 | 2023-06-13 |
| 508 | Pre-Auth RCE in Aspera Faspex: Case Guide for Auditing Ruby on Rails | RCE Security code review Missing authentication Insecure deserialization | IBM | Maxwell Garrett (@TheGrandPew) | Bug Bounty | 2023-02-02 | 2023-06-13 |