writeups.xyz

This Website is a collection of Information Security and Bug Bounty writeups that allows you to easily filter writeups by vulnerabilities, programs, authors, and more, making your research and exploration of security issues simpler and more efficient.

Important Note: Please remember that the inclusion of a program or target in this directory does not imply permission to conduct any hacking activities. Always review and adhere to the specific policies of each program before taking any action.

Title	Vulnerabilities	Programs	Authors
How I Got $250 For My Second Bug on HackerOne	OAuth Session Expiration Issue	Undisclosed	Likith Teki
IIS welcome page to source code review to LFI!	LFI Blind SSRF Security Code Review	Undisclosed	Omar Ahmed (@Spaceboy2O)
The Hunt for XXE to LFI: How I Uncovered CVE-2019–9670 in a Bug Bounty Program	XXE LFI Components With Known Vulnerabilities	Undisclosed	Karthikeyan.V (@Karthithehacker)
4 exploits, 1 bug: exploiting cve-2024-20017 4 different ways	RCE Buffer Overflow Memory Corruption	MediaTek	Hyper (@Hyprdude)
Breaking Down Barriers: Exploiting Pre-Auth SQL Injection In WhatsUp Gold - CVE-2024-6670	SQL Injection Reverse Engineering Security Code Review	Progress (WhatsUp Gold)	Sina Kheirkhah (@SinSinology)
Key and E: A Pentester’s Tale on How a Photo Opened Real Doors	Red Team	Undisclosed	Patricia Gagnon-Renaud
Analysis of CVE-2024-43044 — From file read to RCE in Jenkins through agents	RCE Arbitrary File Read	Jenkins	Gabriel Quadros (@Gqsilva) Ricardo Silva (@Rick2600)
Bypassing airport security via SQL injection	SQL Injection	Undisclosed	Ian Carroll (@Iangcarroll)
$15k RCE Through Monitoring Debug Mode	RCE LFI Debug Mode Enabled	Undisclosed	Omar (@0x0ld)
3CX Phone System Local Privilege Escalation Vulnerability	Local Privilege Escalation Arbitrary File Read	3CX	Adam Crosser
CSRF Bypass Using Domain Confusion Leads To ATO	CSRF Account Takeover	Undisclosed	Osama Aly
CVE-2024-37079:	Integer Underflow Buffer Overflow Memory Corruption	VMware	Grigory Dorodnov Guy Lederfein (@Glederfein)
[$500] How I was able to give verification badge to any YouTube channel and bypass needed requirements	Parameter Tampering	Google (Youtube)	Vojtech Cekal
Back To School - Exploiting A Remote Code Execution Vulnerability In Moodle	RCE Security Code Review	Moodle	RedTeam Pentesting (@RedTeamPT)
“Like” Bypass on Customer Reviews — €500 bounty	Logic Flaw	Undisclosed	Ashar Mahmood (@Hx_0p)
Microsoft Copilot: From Prompt Injection to Exfiltration of Personal Information	AI LLM Prompt Injection	GitHub (Copilot)	Johann Rehberger (Wunderwuzzi23)
WordPress GiveWP POP to RCE (CVE-2024-5932)	RCE PHP Pop Chain PHP Object Injection Security Code Review	Wordfence	Julien Ahrens (@MrTuxracer)
Hitting the jackpot with RCE!	RCE Unrestricted File Upload	Undisclosed	Gokulsspace (@GokTest)
How I got $24000 Bounty from a Log4j RCE in Apple App Store.	RCE Components With Known Vulnerabilities	Apple	Mehar Huzaifa (@Hunter_Huzaifa_)
How I Got Bugs From Google Dorks	Information Disclosure	Undisclosed	Chandan Das
Hidden in Plain Sight: Uncovering RCE on a Forgotten Axis2 Instance	RCE Default Credentials Axis2	Undisclosed	Domenico Veneziano
How I can easily get four P1 at NASA using Simple Google Dorking.	Information Disclosure	NASA	Francesco Topol / K4tedu
NTLM Credential Theft in Python Windows Applications	SSRF NTLMv2 Hash Disclosure NTLM Security Code Review	Python Hugging Face (Gradio) Werkzeug Jupyter Snowflake (Streamlit)	Naveen Sunkavally
Traccar 5 Remote Code Execution Vulnerabilities	RCE Unrestricted File Upload Path Traversal Security Code Review	Traccar	Naveen Sunkavally
Instagram and Meta 2FA Bypass by Unprotected Backup Code Retrieval in Accounts Center	2FA / MFA Bypass Account Takeover	Meta / Facebook	Shuva Saha (@Scriptshuva)

Page 2 of 255