Back to directory
WRITEUP #4064

Bragging Rights(Part 1): Short story of a bug wave

IDORStored XSSSSRFSubdomain takeoverHardcoded credentials
by@ManasH4rsh(Manas Harsh)
Bounty
1,550
Program
-
Published
Jan 27, 2021
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://medium.com/bugbountywriteup/bragging-rights-part-1-short-story-of-a-bug-wave-dbb88f48b604
RELATED WRITEUPS
Canary Token OSS Security Audit Report (Q2 2024)
XSSDoS
Directory Traversal, SQL Injection and Server-Side Request Forgery
SQL InjectionPath traversal
Zomatoooo! IDOR in Saved Payments
IDOR
IIS welcome page to source code review to LFI!
SSRFLFI
NTLM Credential Theft in Python Windows Applications
SSRFNTLMv2 hash disclosure

Built with ❤️ by Shubham Rawat