| 2966 | Download Filename Manipulation due to improper rendering of RTLO characters |
RTLO |
NA |
Jayateertha Guruprasad (@JayateerthaG) |
Bug Bounty | 2020-12-15 | 2023-06-13 |
| 2774 | Grafana Admin Panel bypass in Google Acquisition(VirusTotal) |
Default credentials |
Google |
Jayateertha Guruprasad (@JayateerthaG) |
Bug Bounty | 2021-02-22 | 2023-06-13 |
| 2756 | Jira Auth Bypass bug in Google Acquisition (Apigee) |
Authentication bypass |
Google |
Jayateertha Guruprasad (@JayateerthaG) |
Bug Bounty | 2021-02-28 | 2023-06-13 |
| 2432 | Blind XSS in Apple School- Enrollment Data Disclosure |
Blind XSS |
Apple |
hackrzvijay (@hackrzvijay) |
Bug Bounty | 2021-07-05 | 2023-06-13 |
| 2252 | Bypassed! and uploaded a sweet reverse shell |
Unrestricted file upload |
NA |
Ajay Sharma (@security_donut) |
Bug Bounty | 2021-09-05 | 2023-06-13 |
| 2062 | Hacking Apple Security Report System |
Logic flaw
Social engineering |
Apple |
HackrzVijay (@hackrzvijay) |
Bug Bounty | 2021-11-20 | 2023-06-13 |
| 1969 | XSS via file upload |
XSS
Unrestricted file upload |
NA |
Jay Sharma |
Bug Bounty | 2021-12-27 | 2023-06-13 |
| 1886 | CVE-2020-0696 - Microsoft Outlook Security Feature Bypass Vulnerability |
URL validation bypass |
Microsoft |
Reegun Jayapaul (@reegun21) |
Bug Bounty | 2022-01-27 | 2023-06-13 |
| 1473 | How I was able to see likes and dislikes count which is hidden by victim | YouTube #1 |
Logic flaw
Authorization flaw |
Google |
Jay Jani (@JayJani007) |
Bug Bounty | 2022-06-14 | 2023-06-13 |
| 1452 | How I was able to see likes and dislikes count which is hidden by victim | YouTube #2 |
Logic flaw
Authorization flaw |
Google |
Jay Jani (@JayJani007) |
Bug Bounty | 2022-06-17 | 2023-06-13 |
| 1274 | CVE-2022-29582 - An io_uring vulnerability |
Memory corruption |
Google |
Jayden (@Awarau1) |
Bug Bounty | 2022-08-06 | 2023-06-13 |
| 1142 | AngularJS Client-Side Template Injection: The orderBy Filter. |
CSTI |
NA |
Jay |
Bug Bounty | 2022-09-01 | 2023-06-13 |
| 1076 | Abusing Broken Link In Fitbit (Google Acquisition)To Collect BugBounty Reports On Behalf Of Google ! |
Broken link hijacking |
Google |
Jayateertha Guruprasad (@JayateerthaG) |
Bug Bounty | 2022-09-16 | 2023-06-13 |
| 891 | Blind SSRF in Skype (Microsoft) |
Blind SSRF |
Microsoft |
Jayateertha Guruprasad (@JayateerthaG) |
Bug Bounty | 2022-10-28 | 2023-06-13 |
| 877 | How 403 Forbidden Bypass got me NOKIA Hall Of Fame (HOF) |
403 bypass |
Nokia |
Jaydeepsinh Thakor (@thakor_jd_) |
Bug Bounty | 2022-11-02 | 2023-06-13 |
| 592 | How Browser’s Save As Feature might lead to Code Execution (CVE-2022–45415) |
RCE
Browser hacking |
Mozilla (Firefox) |
Jayateertha Guruprasad (@JayateerthaG) |
Bug Bounty | 2023-01-14 | 2023-06-13 |
| 317 | Account Takeover: An Epic Bug Bounty Story |
Account takeover
Self-XSS
Pre-account takeover |
NA |
Jaydev Ahire |
Bug Bounty | 2023-03-11 | 2023-06-13 |
| 168 | XS-Leak: Deanonymize Microsoft Skype Users by any 3rd-party websites |
XSLeaks |
Microsoft (Skype) |
Jayateertha Guruprasad (@JayateerthaG) |
Bug Bounty | 2023-04-21 | 2023-06-13 |
