Valeriy Shevchenko (@Krevetk0Valeriy)

Title	Vulnerabilities	Programs	Authors
Hacking Hackers for fun and profit	Self-XSS Blind XSS	Undisclosed	Valeriy Shevchenko (@Krevetk0Valeriy)
How I accidentally hacked many companies using N/A vulnerability in Atlassian Cloud	Information Disclosure Broken Authentication	Atlassian	Valeriy Shevchenko (@Krevetk0Valeriy)
Credential stuffing in Bug bounty hunting	Credential Stuffing	Undisclosed	Valeriy Shevchenko (@Krevetk0Valeriy)
$10,000 for a vulnerability that doesn’t exist	Path Traversal	Undisclosed	Valeriy Shevchenko (@Krevetk0Valeriy)
From CRLF to Account Takeover	CRLF Injection HTTP Response Splitting Reflected XSS Account Takeover	Undisclosed	Valeriy Shevchenko (@Krevetk0Valeriy)
Broke limited scope with a chain of bugs (tips for every rider CORS)	CORS Misconfiguration RCE	Undisclosed	Valeriy Shevchenko (@Krevetk0Valeriy)
Two Easy RCE in Atlassian Products	Credential Stuffing	Atlassian	Valeriy Shevchenko (@Krevetk0Valeriy)
How I hacked Vending Machine	Violation of Secure Design Principles	Undisclosed	Valeriy Shevchenko (@Krevetk0Valeriy)
Subdomain Takeover — New Level	Subdomain Takeover	Undisclosed	Valeriy Shevchenko (@Krevetk0Valeriy)
How I hacked one cryptocurrency service	Blind XSS Reflected XSS CSRF	PayKassa	Valeriy Shevchenko (@Krevetk0Valeriy)
How to delete all company progress by one "rm" command in AWS s3 Buckets	AWS Misconfiguration	Undisclosed	Valeriy Shevchenko (@Krevetk0Valeriy)
How i found massive information disclosure of 1500 famous people	Information Disclosure	Undisclosed	Valeriy Shevchenko (@Krevetk0Valeriy)

Page 1 of 1