Write-ups
Check The Published Writeups
| WDB | Title | Tags | Programs | Authors | Type | Publication | Added |
|---|---|---|---|---|---|---|---|
| 3054 | How I found a Tor vulnerability in Brave Browser, reported it, watched it get patched, got a CVE (CVE-2020-8276) and a small bounty, all in one working day | Information disclosure | Brave Software | sickcodes (@sickcodes) | Bug Bounty | 2020-11-05 | 2023-06-13 |
| 2319 | CVE-2021-22929 – Brave Browser 1.27 and below permanently logs the server connection time for all v2 tor domains to ~/.config/BraveSoftware /Brave-Browser/tor/data/tor.log | Privacy issue Information disclosure | Brave Software | sickcodes (@sickcodes) | Bug Bounty | 2021-08-16 | 2023-06-13 |
| 2189 | CVE-2021-39246 – Tor Browser through 10.5.6 and 11.x through 11.0a4 allows a correlation attack excessive verbose logging – Windows, macOS, Linux | Verbose logging | Tor | sickcodes (@sickcodes) | Bug Bounty | 2021-09-27 | 2023-06-13 |