| Subdomain Takeover via Leadpages Services on Tiktok |
|
|
|
| All *.intercom.help subdomains vulnerable to Subdomain Takeover from intercom Service |
|
|
|
| Subdomain Takeover via Campaignmonitor.com |
|
|
|
| How I able to Takeover 10 subdomains in a Private Program ? |
|
|
|
| DOM Based XSS in Private Program |
|
|
|
| SQL Injection in private-site.com/login.php |
|
|
|
| Old GitHub Profile Takeover! |
|
|
|
| [RCE] Remote code execution at api.PrivateProgram.com (CVE-2017-5638) |
|
|
|
| [Still work] Redirect Yahoo Subdomain XSS Reflected from americangreetings.com |
|
|
|
| Subdomain Misconfiguration lead to AWS S3 Buckets Reader |
|
|
|
| 2 Subdomains Takeover via Unbounce in a Private Program |
|
|
|
| Subdomain Takeover via Wufoo Service in a Private Program |
|
|
|
| Souq.com Subdomain Takeover via jazzhr.com service |
|
|
|
| Subdomain Takeover via HubSpot |
|
|
|
| [SSRF] Server Side Request Forgery in a private Program developers.example.com |
|
|
|
| Subdomain Takeover via Shopify Vendor ( blog.exchangemarketplace.com ) with Steps |
|
|
|
| Reflected Swf XSS at ( https://plugins.svn.wordpress.org ) |
|
|
|
| Reflected XSS in Django REST Framework Api at MapBox Subdomain |
|
|
|
| My Disclosed Report about Basic auth Api details at Reverb.com |
|
|
|
| Shipt Subdomain TakeOver via HeroKu ( test.shipt.com ) |
|
|
|
| Reflected XSS in Yahoo Subdomain ( hk.movies.yahoo.com ) |
|
|
|
| Reflected XSS on www.zomato.com By Mustafa Hasan |
|
|
|
| Link injection on 2 Twitter Subdomain |
|
|
|
| My Best Small Report Bounty Report in Private Program ( Django REST framework Admin Login ByPass ) |
|
|
|
| XSS In sports.tw.campaign.yahoo.net |
|
|
|
writeups.xyz
/
Mohamed Haron (@M7mdharon)