| Break the Logic: 5 Different Perspectives in Single Page (€1500) |
|
|
|
| Multiple bugs in one program leads to 1500€ |
|
|
|
| How I earned $10,000 within the last 7 months — a 17y/o Edition |
|
|
|
| Reading Message from Microsoft’s Private Yammer Group |
|
|
|
| Authomize Discovers PassBleed Password Stealing and Impersonation Risks in Okta |
|
|
|
| Facebook Portal’s business logic error lead to 500$ |
|
|
|
| An Out Of Scope domain Leads To a Critical Bug[$1500] |
|
|
|
| We were vulnerable - how a security company could have vulns |
|
|
|
| How I hacked one of the biggest Airline in the world |
|
|
|
| How I was able to see likes and dislikes count which is hidden by victim | YouTube #2 |
|
|
|
| 403 bypass on a fortune 100 financial institution (P3) |
|
|
|
| How I was able to see likes and dislikes count which is hidden by victim | YouTube #1 |
|
|
|
| Same bug different platform |
|
|
|
| CVE-2022-25262 | JetBrains Hub single-click SAML response takeover |
|
|
|
| MSRC – Joint security research write up – Azure AD Consent bypass disclosure with Kim Jamia – Q1/2022 |
|
|
|
| Demographic Misconfiguration on Facebook live |
|
|
|
| Send a Email to me and get kicked out of Google Groups !! — #GoogleVRP — A Feature that almost broke Google Groups !! |
|
|
|
| 403 forbidden bypass & Accessing config files using a header |
|
|
|
| Access Control Violation – Wiki Page Creation |
|
|
|
| How I messed up my own profile data |
|
|
|
| How i found “Broken Access Control Through out-of-sync setup” and got $1000 |
|
|
|
| How i was able to bypass a Pin code Protection |
|
|
|
| Bypassing Identity-Aware Proxy - Google Cloud Vulnerability |
|
|
|
| Hacked Google-Meet…??! |
|
|
|
| RocketChat - Monitor User Messages |
|
|
|
writeups.xyz
/
Broken Authorization