writeups.xyz writeups.xyz / Mail.ru

Title Vulnerabilities Programs Authors
From open redirect to RCE in one week
How @Mailru traeted my report on their program
How I Scored 2K Bounty via an IDOR
How I got RCE In The World Largest Russian Company
Account takeover in cups.mail.ru
The $1,000 worth cookie
Story of stealing mail conversation, contacts in mail.ru and myMail iOS applications via XSS
Bitrix WAF bypass
Mail.Ru Ext.B Scope Account Takeover [ $1500 ]
2 FA Bypass via CSRF Attack
[Bug bounty | mail.ru] Access to the admin panel of the partner site and data disclosure of 2 million users
Stored XSS in the heart of the Russian email provider giant (Mail.ru)