writeups.xyz
/
Cristi Vlad (@CristiVlad25)
Title
Vulnerabilities
Programs
Authors
Account Takeover [It Looked Secure at First]
IDOR
Account Takeover
Privilege Escalation
Password Reset
Undisclosed
Cristi Vlad (@CristiVlad25)
Unauthenticated Massive PII Leak
Rate Limiting Bypass
Bruteforce
Undisclosed
Cristi Vlad (@CristiVlad25)
Account (of the CEO) Takeover via Password Reset
Account Takeover
Password Reset
IDOR
Undisclosed
Cristi Vlad (@CristiVlad25)
Exfiltrating AWS Credentials via PDF Rendering of Unsanitized Input
SSRF
HTML Injection
XSS
Undisclosed
Cristi Vlad (@CristiVlad25)
Page 1 of 1
writeups.xyz
/
Cristi Vlad (@CristiVlad25)