| How you can find your first bug using google |
|
|
|
| How we breached ZDFheute live on television |
|
|
|
| OTP Leaking Through Cookie Leads to Account Takeover |
|
|
|
| Account Takeover - Inside The Tenant |
|
|
|
| Hell’s Keychain: Supply-chain vulnerability in IBM Cloud Databases for PostgreSQL allows potential for unauthorized database access |
|
|
|
| Improper error handling leads to exposing internal tokens |
|
|
|
| CVE-2022-41924 - RCE in Tailscale, DNS Rebinding, and You |
|
|
|
| Information Exposure — My Fourth Finding on Hackerone! |
|
|
|
| Case of Admin Bypass for RCE, XSS, and Information Disclosure |
|
|
|
| How I Get 5x Swag From Sony |
|
|
|
| urlscan.io's SOAR spot: Chatty security tools leaking private data |
|
|
|
| GL.iNET GL-MT300N-V2 Router Vulnerabilities and Hardware Teardown |
|
|
|
| Finding Multiple Security Issues on Agorapulse |
|
|
|
| How I Found Three Credentials Leak on One Google Dork on Bugcrowd program |
|
|
|
| Vulnerabilities in Tenda's W15Ev2 AC1200 Router |
|
|
|
| The easiest bug to get a Hall of fame from a Billion dollar company. |
|
|
|
| Full Company Building Takeover |
|
|
|
| How I Found A P1 Bug |
|
|
|
| My First And Second Bugs Are — 2FA Bypass |
|
|
|
| Tale of Easy P1 Bugs in Wild |
|
|
|
| “Hey Siri, follow that car!” - How traffic cameras expose your location through parking apps. |
|
|
|
| Android Application Forgot Password Token Leakage Leading to Account Takeover |
|
|
|
| Bug Bounty { How I found an Sensitive Information Disclosure( Reconnaissance ) } |
|
|
|
| Turning Your Computer Into a GPS Tracker With Apple Maps |
|
|
|
| How I abused the file upload function to get a high severity vulnerability in Bug Bounty |
|
|
|
writeups.xyz
/
Information Disclosure