| 17 vulnerabilities in Sharp Multi-Function Printers |
|
|
|
| BlackBerry MDM Has Some Authentication Flaws |
|
|
|
| From Disclosure to High Severity: Leveraging Dyte API Key for Maximum Impact |
|
|
|
| My debut with a Critical Bug: How I found my first bug (API misconfiguration) |
|
|
|
| How I was able to modify and delete any user’s data file (filestack API) |
|
|
|
| How I Unveiled a Critical Vulnerability: Exposing All Buyers’ Invoices PII with a Single Trick |
|
|
|
| API Misconfiguration - Algolia API Key |
|
|
|
| From an Innocent api-key to PII data |
|
|
|
| Little bug, Big impact. 25k bounty |
|
|
|
| Owning half of a government assets through AWS |
|
|
|
| Firebase: Insecure by Default (feat. that one time our classmates tried to sue us) |
|
|
|
| Auth Bypass Via Exposed Credentials |
|
|
|
| MobileIron MDM Contains Static Key Allowing Account Enumeration |
|
|
|
| Let’s know How I have explored the buried secrets in Xamarin application |
|
|
|
| Firebase Cloud Messaging Service Takeover: A small research that led to 30k$+ in bounties |
|
|
|
writeups.xyz
/
Hardcoded API Keys