Arman (@M7arm4n) | writeups.xyz

Title	Vulnerabilities	Programs	Authors
An IDOR lead joins any group makes me $2,500	IDOR	Undisclosed	Arman (@M7arm4n)
Let’s Go For Whole Company	Default Credentials	Undisclosed	Arman (@M7arm4n)
Discovery of an XSS on Opera	XSS	Opera	Arman (@M7arm4n)
Mass Assignment leads to the victim’s account being inaccessible forever	Mass Assignment Logic Flaw	Undisclosed	Arman (@M7arm4n)
Unauthorized access to the admin panel via leaked credentials on the WayBackMachine	Information Disclosure	Undisclosed	Arman (@M7arm4n)
Let’s Hack Citizens Bank	XSS	Citizens Bank	Arman (@M7arm4n)
Default Credentials on Sony- Swag Time	Hardcoded Credentials Information Disclosure	Sony	Arman (@M7arm4n)
Unauthorized Access To Admin Panel via Swagger	Missing Authentication Broken Access Control	Coca-Cola	Arman (@M7arm4n)
Zero Click To Account Takeover (IDOR + XSS)	IDOR XSS Account Takeover	Undisclosed	Arman (@M7arm4n)

Page 1 of 1