Write-ups

Check The Published Writeups

Reset
WDBTitleTagsProgramsAuthorsTypePublicationAdded
571Azure Active Directory Flaw Allowed SAML Persistence Azure AD SAML SSO Microsoft (Azure) Secureworks Counter Threat Unit (@Secureworks) Bug Bounty2023-01-182023-06-13
568The easiest way I used to bypass an admin panel HTTP request smuggling Account takeover NA Sirat Sami (@siratsami71) Bug Bounty2023-01-192023-06-13
567CVE-2022-47966 SAML ShowStopper SAML XSLT injection Zoho (ManageEngine) Khoa Dinh (@_l0gg) Bug Bounty2023-01-192023-06-13
563Technical Advisory – Multiple Vulnerabilities in the Galaxy App Store (CVE-2023-21433, CVE-2023-21434) Android Insecure intent Insecure deeplink URL validation bypass Samsung Ken Gannon (@Yogehi) Bug Bounty2023-01-202023-06-13
479Pwn2Owning Two Hosts At The Same Time: Abusing Inductive Automation Ignition’s Custom Deserialization Insecure deserialization RCE Security code review Inductive Automation Ignition Piotr Bazydło (@chudyPB) Bug Bounty2023-02-082023-06-13
457Bypassing SameSite=lax cookie restrictions to preform CSRF resulting to a horizontal privilege escalation via poor email verification mechanism CSRF NA Imad Husanovic (@deadoverflow_) Bug Bounty2023-02-132023-06-13
432[1500$ Worth — Slack] vulnerability, bypass invite accept process Broken Access Control Logic flaw Slack Sirat Sami (@siratsami71) Bug Bounty2023-02-202023-06-13
393Unauthenticated GraphQL Introspection and API calls GraphQL Missing authentication NA Osama Avvan (@osamaavvan) Bug Bounty2023-02-262023-06-13
392How I got a $2000 bounty with RXSS Reflected XSS NA Hashir Sami Khan (@P4n7h3Rx) Bug Bounty2023-02-262023-06-13
371Gitpod remote code execution 0-day vulnerability via WebSockets RCE Websockets Cross-Site WebSocket Hijacking (CSWH) Cloud Samesite cookie bypass Account takeover Gitpod Elliot Ward Bug Bounty2023-03-012023-06-13
220A web security story from 2008: silently securing JSON.parse Parsing issue XSS Arbitrary Code Execution JSON.parse Mike Samuel (@mvsamuel) Bug Bounty2023-04-062023-06-13
200TOPdesk vulnerable to XML Signature Wrapping Attacks XML Signature Wrapping SAML SSO TOPdesk Paulo A. Silva (@pauloasilva_com) Bug Bounty2023-04-122023-06-13
182#BrokenSesame: Accidental write’ permissions to private registry allowed potential RCE to Alibaba Cloud Database Services Cloud RCE Container escape Kubernetes Privilege escalation Lateral movement Supply chain attack Cross-tenant vulnerability Alibaba Ronen Shustin (@ronenshh) Bug Bounty2023-04-192023-06-13
173The Fuzzing Guide to the Galaxy: An Attempt with Android System Services Android Fuzzing Heap overflow Integer overflow Out-of-bounds Write Memory corruption Local Privilege Escalation Samsung Anthony Remy Bug Bounty2023-04-202023-06-13
148Redash SAML Authentication Bypass SAML Authentication bypass Redash An Trinh (@_tint0) Bug Bounty2023-04-282023-06-13
55XSS Via Qr Code XSS NA Ahmed Osama (A0G) Bug Bounty2023-05-252023-06-13