writeups.xyz
/
Mahmoud Hamed (@7odamo_)
Title
Vulnerabilities
Programs
Authors
How I Got $5,000 for Out-of-Scope XSS
CORS Misconfiguration
Self-XSS
Samesite Cookie Bypass
Undisclosed
Mahmoud Hamed (@7odamo_)
Response Manipulation in the Admin panel lead to PII leakage
Account Takeover
HTTP Response Manipulation
UPS VDP
Mahmoud Hamed (@7odamo_)
SQL Injection, Reflected XSS and Information Disclosure in one subdomain in just 10 minutes
SQL Injection
XSS
Information Disclosure
Undisclosed
Mahmoud Hamed (@7odamo_)
Page 1 of 1
writeups.xyz
/
Mahmoud Hamed (@7odamo_)