writeups.xyz

This Website is a collection of Information Security and Bug Bounty writeups that allows you to easily filter writeups by vulnerabilities, programs, authors, and more, making your research and exploration of security issues simpler and more efficient.

Important Note: Please remember that the inclusion of a program or target in this directory does not imply permission to conduct any hacking activities. Always review and adhere to the specific policies of each program before taking any action.

Title	Vulnerabilities	Programs	Authors
[2,500$ Bug Bounty Write-Up] Remote Code Execution (RCE) via unclaimed Node package	RCE Dependency Confusion	Undisclosed	Fuleki Ioan
Data Theft in Salesforce: Manipulating Public Links	SOQL Injection	Salesforce	Nitay Bachrach
Attacking PowerShell CLIXML Deserialization	Insecure Deserialization RCE	Microsoft	Alexander Andersson
Escalating From Reader To Contributor In Azure API Management	Privilege Escalation	Microsoft (Azure)	Christian Håland
Logic Flaw: I Can Block You from Accessing Your Own Account	Logic Flaw	Undisclosed	Hashim Amin
Zero-Click Calendar invite — Critical zero-click vulnerability chain in macOS	RCE Arbitrary File Write Arbitrary File Delete TCC Bypass	Apple (MacOS)	Mikko Kenttälä (@Turmio_)
Interesting Story of an Account Takeover Vulnerability	Account Takeover Host Header Injection	Undisclosed	Deepanshu (@Golu_369)
Microsoft Windows MSI Installer - Repair to SYSTEM - A detailed journey	Local Privilege Escalation	Microsoft (Windows)	Michael Baer
We Spent $20 To Achieve RCE And Accidentally Became The Admins Of .MOBI	RCE TLD Hacking	Undisclosed	WatchTowr (@Watchtowrcyber)
Directory Traversal, SQL Injection and Server-Side Request Forgery	Path Traversal SQL Injection SSRF	Sage	Chris McCurley (@Chrisrmccurley)
Getting code execution on Veeam through CVE-2023-27532	RCE Insecure Deserialization Security Code Review	Veeam	Alain Mowat (@Plopz0r)
Hijacking SQL Server Credentials using Agent Jobs for Domain Privilege Escalation	Privilege Escalation	Undisclosed	Scott Sutherland
When Certificates Fail: A Story of Bypassed MFA in Remote Access	2FA / MFA Bypass Citrix	Undisclosed	Michael Eder (@Michael_eder_)
Self-XSS to ATO via Site Features	Self-XSS Account Takeover	Undisclosed	Hossein Shourabi (@Hoseinshurabi)
How 100% Manual Hacking (Without Even Kali And Burp) Led To 2 Medium Vulnerabilities On YesWeHack	XSS	Undisclosed	Manan Sanghvi (@An____Anonymous)
SSTI in Bug Bounty Program: The Time I Played with Handlebars and Broke Stuff	SSTI	Undisclosed	Ali Zamini
Unmasking Harmful Content in a Medical Chatbot: A Red Team Perspective	AI LLM Jailbreak Chatbot	Undisclosed	William Wallace (@Phyr3wall)
Revival Hijack – PyPI hijack technique exploited in the wild, puts 22K packages at risk	CI/CD Supply Chain Attack	PyPI	Andrey Polkovnichenko Brian Moussalli
Spip Preauth RCE 2024: Part 2, A Big Upload	RCE File Upload Security Code Review	SPIP	Laluka (@TheLaluka)
Zomatoooo! IDOR in Saved Payments	IDOR	Zomato	Prateek Srivastava
P3 (Medium) : How I Gain Access To NASA's Internal Workspace?!	Information Disclosure	NASA	Sri Shavin Kumar
Basic HTTP Authentication Risk: Uncovering pyspider Vulnerabilities	Reflected XSS CSRF Security Code Review	Pyspider	Yaniv Nizry (@YNizry)
Ghost In The Ppl Part 1: Byovdll	Use-After-Free Memory Corruption LSA Protection Bypass	Undisclosed	Clément Labro (@Itm4n)
A Story About How I Found XSS in ASUS	XSS	Asus	Karthikeyan.V (@Karthithehacker)
Bypassing CSP via URL Parser Confusions : XSS on Netlify’s Image CDN	XSS CSP Bypass	Netlify	Sudhanshu Rajbhar (@Sudhanshur705)

Page 1 of 255