Write-ups
Check The Published Writeups
| WDB | Title | Tags | Programs | Authors | Type | Publication | Added |
|---|---|---|---|---|---|---|---|
| 2029 | Bypassing Box’s Time-based One-Time Password MFA | OTP bypass MFA bypass | Box | Tal Peleg | Bug Bounty | 2021-12-02 | 2023-06-13 |
| 1910 | Mixed Messages: Busting Box’s MFA Methods | OTP bypass MFA bypass | Box | Tal Peleg | Bug Bounty | 2022-01-18 | 2023-06-13 |
| 1559 | Spoofing SaaS Vanity URLs for Social Engineering Attacks | URL spoofing | Box Zoom Google | Tal Peleg | Bug Bounty | 2022-05-11 | 2023-06-13 |
| 827 | Varonis Threat Labs Discovers SQLi and Access Flaws in Zendesk | SQL injection Logic flaw | Zendesk | Tal Peleg | Bug Bounty | 2022-11-15 | 2023-06-13 |
| 550 | CrossTalk and Secret Agent: Two Attack Vectors on Okta%27s Identity Suite | Insecure storage of sensitive information Phishing | Okta | Tal Peleg | Bug Bounty | 2023-01-23 | 2023-06-13 |