| Exposing 185M+ Indians’ Personal Information and much more |
|
|
|
| Found an URL in the android application source code which lead to an IDOR |
|
|
|
| Information disclosure or GDPR breach? A Google tale… |
|
|
|
| A-Salt: attacking SaltStack |
|
|
|
| A weird bug that leaked PII |
|
|
|
| Play with Google, Twitter, Apple, Dell |
|
|
|
| Broken Function Level Authorization leads to disclosing PII Information of all company users |
|
|
|
| Disclosing Facebook page admins by playing a game |
|
|
|
| PHP Development Server <= 7.4.21 - Remote Source Disclosure |
|
|
|
| How i was able to get critical bug on google by get full access on [Google Cloud BI Hackathon] |
|
|
|
| How I identified and reported vulnerabilities in Oracle and the rewards of responsible disclosure:From Backup Leak to Hall of Fame |
|
|
|
| From Error_Log File(P4) To Company Account Takeover(P1) and Unauthorized Actions On API |
|
|
|
| Critical Vulnerability through OSINT only |
|
|
|
| I scanned every package on PyPi and found 57 live AWS keys |
|
|
|
| Web Hackers vs. The Auto Industry: Critical Vulnerabilities in Ferrari, BMW, Rolls Royce, Porsche, and More |
|
|
|
| Feedback Analyzer Exploitation |
|
|
|
| How I Pwned 10 Admin Panels and got rewarded 8000$+? |
|
|
|
| Owning half of a government assets through AWS |
|
|
|
| CVE-2022-20942: It's not old functionality, it's vintage |
|
|
|
| PII data exfiltration within minutes |
|
|
|
| Custom role details are exposed in Google groups. |
|
|
|
| User names and email addresses are exposed to unprivileged admins in the Google Marketing Platform |
|
|
|
| Users of other organizations can be confirmed on the Google Marketing Platform - User enumeration Error based |
|
|
|
| STRIPE Live Key Exposed:: Bounty: $1000 |
|
|
|
| A03:2021 — [Injection] SQL Injection through internal directory disclose |
|
|
|
writeups.xyz
/
Information Disclosure