LinkedIn | writeups.xyz

Title	Vulnerabilities	Programs	Authors
Introducing MavenGate: a supply chain attack method for Java and Android applications	Dependency Hijacking Android Maven Supply Chain Attack	Google Facebook Amazon Microsoft Adobe LinkedIn Netflix	Oversecured (@OversecuredInc)
OAuth 2.0 Redirect URI Validation Falls Short, Literally	OAuth Path Confusion Open Redirect HTTP Parameter Pollution Account Takeover	Atlassian Meta / Facebook GitHub Microsoft Yahoo! / Verizon Media LinkedIn Slack VK LINE AuthDigital (Naver) OK ORCID	Tommaso Innocenti (@Innotommy) Matteo Golinelli Kaan Onarlioglu Ali Mirheidari Bruno Crispo Engin Kirda
IDOR, unpin posts for fun.	IDOR	LinkedIn	Omar Ahmed (@Spaceboy2O)
Uncovering a Critical Vulnerability: My Journey of Discovering CVE-2021–31589, a Reflected XSS in LinkedIn	Components With Known Vulnerabilities Reflected XSS	LinkedIn	Karthikeyan.V (@Karthithehacker)
[Responsible Disclosure] How we could have deleted any Linkedin post	IDOR	LinkedIn	Anand Prakash (@Anandpraka_sh)
Pre-hijacked accounts: An Empirical Study of Security Failures in User Account Creation on the Web	Account Takeover Pre-Hijacking Attack	Dropbox Meta / Facebook LinkedIn WordPress Zoom	Avinash Sudhodanan (@Sudoavi) Andrew Paverd (@Ajpaverd)
Bug Report; Bypassing Weekly Limits In Basic (Free) LinkedIn Account	Logic Flaw	LinkedIn	Ashok Acharya
Crashing your LinkedIn app with a connection request.	Application-Level DoS	LinkedIn	Renganathan (@IamRenganathan)
Link Previews: How a Simple Feature Can Have Privacy and Security Risks	Information Disclosure	Discord Meta / Facebook Google LINE LinkedIn Slack Twitter Zoom	Talal Haj Bakry (@Parasarora06) Tommy Mysk
Blind IDOR in LinkedIn iOS application	IDOR	LinkedIn	Hailstorm (@Hailstorm1422)
Reposted [2017]: LinkedIn Hacker’s Experience	Stored XSS	LinkedIn	Alexandru Coltuneac (@Dekeeu)
Persistent XSS (unvalidated Open Graph embed) at LinkedIn.com	Stored XSS	LinkedIn	Jonathan Bouman (@JonathanBouman)
#BugBounty @ Linkedln-How I was able to bypass Open Redirection Protection	Open Redirect	LinkedIn	Avinash Jain (@Logicbomb_1)
One Cloud-based Local File Inclusion = Many Companies affected	Path Traversal	Oracle Meta / Facebook LinkedIn Dropbox	Francisco Correa (@Panchocosil)
Critical LinkedIn vulnerability proactively resolved by Wallarm (XXE in application server)	XXE	LinkedIn	Wallarm (@Wallarm)
Open Redirect in Linkedin and Yahoo	Open Redirect	LinkedIn Yahoo! / Verizon Media	Vitor “R0t” Oliveira (@R0t1v)

Page 1 of 1