| ASP.NET Boilerplate Multiple Vulnerabilities |
|
|
|
| Patch bypass for [CVE-2020-6369] Hard-coded Credentials in CA Introscope Enterprise Manager |
|
|
|
| With Management Comes Risk: Finding Flaws in FileWave MDM |
|
|
|
| Personal Access Token Disclosure in Asana Desktop Application |
|
|
|
| Fuzzing and credentials leakage..awesome bug hunting writeup |
|
|
|
| Write Up – Finapi (Open Banking API) Oauth Credentials Exposed In Plain Text In Android App |
|
|
|
| Solarwinds Web Help Desk: When the Helpdesk is too Helpful |
|
|
|
| Facebook Messenger for MacOS contained valid hardcoded FB access token (employee's token?) |
|
|
|
| Admin Panel? Pwned! |
|
|
|
| Android apk leaks access token to takeover the whole infrastructure |
|
|
|
| Bragging Rights(Part 1): Short story of a bug wave |
|
|
|
| Let’s know How I have explored the buried secrets in React Native application |
|
|
|
| Tenda AC15 AC1900 Vulnerabilities Discovered and Exploited |
|
|
|
| From N/A to Resolved For BackBlaze Android App[Hackerone Platform] Bucket Takeover |
|
|
|
| Hacking SMS API Service Provider of a Company |Android App Static Security Analysis | Bug Bounty POC |
|
|
|
| Operation Crack: Hacking IDA Pro Installer PRNG from an Unusual Way |
|
|
|
| Swiss_E-Voting_Publications |
|
|
|
| https://medium.com/@mahitman1/i-own-your-customers-22e965761abd |
|
|
|
| From an error message to DB disclosure |
|
|
|
| Compromising HP SAN appliances |
|
|
|
writeups.xyz
/
Hardcoded Credentials