writeups.xyz
/
Aditya Saligrama (@Saligrama_a)
Title
Vulnerabilities
Programs
Authors
A student's dream: hacking (then fixing) Gradescope's autograder
RCE
Gradescope
Aditya Saligrama (@Saligrama_a)
Dodging OAuth origin restrictions for Firebase spelunking
OAuth
Security Misconfiguration
Broken Authentication
Undisclosed
Aditya Saligrama (@Saligrama_a)
Glen Husman
Firebase: Insecure by Default (feat. that one time our classmates tried to sue us)
Hardcoded API Keys
Fizz
Aditya Saligrama (@Saligrama_a)
Miles McCain (@MilesMcCain)
Cooper De Nicola (@CooperDenicola)
Page 1 of 1
writeups.xyz
/
Aditya Saligrama (@Saligrama_a)