writeups.xyz / Viktor Mares

Title	Vulnerabilities	Programs	Authors
ALWAYS test 404 Not Found in Bug Bounties!	Hardcoded Credentials Reflected XSS	Undisclosed	Viktor Mares
Secret Input Header leads to Password Reset Poisoning	Password Reset	Undisclosed	Viktor Mares
P1 Vulnerability by Bypassing the membership payment page	Payment Bypass	Undisclosed	Viktor Mares
Code Injection via Python Sandbox Escape — how I got a shell inside a network.	Code Injection RCE	Undisclosed	Viktor Mares
Critical Vulnerability through OSINT only	Information Disclosure	Undisclosed	Viktor Mares
Unusual 403 Bypass to a full website takeover [External Pentest]	403 Bypass	Undisclosed	Viktor Mares

Page 1 of 1