Bug Bounty in Lockdown (SQLi and Business Logic)

Logic Flaw: I Can Block You from Accessing Your Own Account

Directory Traversal, SQL Injection and Server-Side Request Forgery

Breaking Down Barriers: Exploiting Pre-Auth SQL Injection In WhatsUp Gold - CVE-2024-6670

Bypassing airport security via SQL injection

“Like” Bypass on Customer Reviews — €500 bounty