Omar Hashem (@OmarHashem666)

Title	Vulnerabilities	Programs	Authors
HubSpot Full Account Takeover in Bug Bounty	Account Takeover Hyperlink Injection Password Reset	HubSpot	Omar Hashem (@OmarHashem666)
CVE-2022-38627: A journey through SQLite Injection to compromise the whole enterprise building	SQL Injection	Undisclosed	Omar Hashem (@OmarHashem666)
CVE-2022-42710: A journey through XXE to Stored-XSS	Stored XSS XXE Security Code Review	Linear	Omar Hashem (@OmarHashem666)
Full Company Building Takeover	Information Disclosure	Undisclosed	Omar Hashem (@OmarHashem666)
Orange Arbitrary Command Execution	RCE Docker Daemon Misconfiguration Missing Authentication	Orange	Omar Hashem (@OmarHashem666)
How I Found Multiple SQL Injections in 5 Minutes in Bug Bounty	SQL Injection	Undisclosed	Omar Hashem (@OmarHashem666)
How I abused the file upload function to get a high severity vulnerability in Bug Bounty	Unrestricted File Upload Information Disclosure	Undisclosed	Omar Hashem (@OmarHashem666)
How I found 3 RXSS on the Lululemon bug bounty program	XSS	Lululemon	Omar Hashem (@OmarHashem666)
How to prevent more than 200 million users from using Google services	Logic Flaw	Google	Omar Hashem (@OmarHashem666)

Page 1 of 1